./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3005407552

<...>
Warning: Permanently added '10.128.1.156' (ED25519) to the list of known hosts.
execve("./syz-executor3005407552", ["./syz-executor3005407552"], 0x7ffd27d8e340 /* 10 vars */) = 0
brk(NULL)                               = 0x55556caf1000
brk(0x55556caf1d00)                     = 0x55556caf1d00
arch_prctl(ARCH_SET_FS, 0x55556caf1380) = 0
set_tid_address(0x55556caf1650)         = 355
set_robust_list(0x55556caf1660, 24)     = 0
rseq(0x55556caf1ca0, 0x20, 0, 0x53053053) = -1 ENOSYS (Function not implemented)
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor3005407552", 4096) = 28
getrandom("\xd5\x58\x18\xe8\x62\x7a\xb8\x8e", 8, GRND_NONBLOCK) = 8
brk(NULL)                               = 0x55556caf1d00
brk(0x55556cb12d00)                     = 0x55556cb12d00
brk(0x55556cb13000)                     = 0x55556cb13000
mprotect(0x7fb955c3b000, 16384, PROT_READ) = 0
mmap(0x3ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x3ffffffff000
mmap(0x400000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x400000000000
mmap(0x400001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x400001000000
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55556caf1650) = 356
./strace-static-x86_64: Process 356 attached
[pid   355] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55556caf1650) = 357
[pid   356] set_robust_list(0x55556caf1660, 24./strace-static-x86_64: Process 357 attached
 <unfinished ...>
[pid   357] set_robust_list(0x55556caf1660, 24) = 0
[pid   357] mkdir("./syzkaller.c2lmo2", 0700 <unfinished ...>
[pid   355] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid   356] <... set_robust_list resumed>) = 0
./strace-static-x86_64: Process 358 attached
[pid   355] <... clone resumed>, child_tidptr=0x55556caf1650) = 358
[pid   358] set_robust_list(0x55556caf1660, 24) = 0
[pid   358] mkdir("./syzkaller.aDc6zi", 0700 <unfinished ...>
[pid   355] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid   357] <... mkdir resumed>)        = 0
[pid   357] chmod("./syzkaller.c2lmo2", 0777) = 0
[pid   357] chdir("./syzkaller.c2lmo2") = 0
[pid   357] mkdir("./0", 0777 <unfinished ...>
[pid   355] <... clone resumed>, child_tidptr=0x55556caf1650) = 359
[pid   357] <... mkdir resumed>)        = 0
[pid   357] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   355] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid   356] mkdir("./syzkaller.RLArfL", 0700 <unfinished ...>
[pid   357] <... openat resumed>)       = 3
[pid   357] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   355] <... clone resumed>, child_tidptr=0x55556caf1650) = 360
[pid   357] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid   357] close(3)                    = 0
[pid   357] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55556caf1650) = 361
[pid   358] <... mkdir resumed>)        = 0
./strace-static-x86_64: Process 361 attached
./strace-static-x86_64: Process 360 attached
./strace-static-x86_64: Process 359 attached
[pid   358] chmod("./syzkaller.aDc6zi", 0777 <unfinished ...>
[pid   356] <... mkdir resumed>)        = 0
[pid   356] chmod("./syzkaller.RLArfL", 0777) = 0
[pid   356] chdir("./syzkaller.RLArfL") = 0
[pid   356] mkdir("./0", 0777)          = 0
[pid   356] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   356] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   356] close(3)                    = 0
[pid   356] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55556caf1650) = 364
[pid   361] set_robust_list(0x55556caf1660, 24) = 0
[pid   361] chdir("./0")                = 0
[pid   361] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   361] setpgid(0, 0)               = 0
[pid   361] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   360] set_robust_list(0x55556caf1660, 24) = 0
[pid   360] mkdir("./syzkaller.iU8IiS", 0700 <unfinished ...>
[pid   361] write(3, "1000", 4)         = 4
[pid   361] close(3)                    = 0
[pid   361] symlink("/dev/binderfs", "./binderfs") = 0
[pid   360] <... mkdir resumed>)        = 0
[pid   361] write(1, "executing program\n", 18executing program
) = 18
[pid   361] memfd_create("syzkaller", 0 <unfinished ...>
[pid   360] chmod("./syzkaller.iU8IiS", 0777) = 0
[pid   360] chdir("./syzkaller.iU8IiS") = 0
[pid   360] mkdir("./0", 0777 <unfinished ...>
[pid   361] <... memfd_create resumed>) = 3
[pid   360] <... mkdir resumed>)        = 0
[pid   361] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   360] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3
[pid   360] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   360] close(3)                    = 0
[pid   360] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55556caf1650) = 365
./strace-static-x86_64: Process 364 attached
./strace-static-x86_64: Process 365 attached
[pid   364] set_robust_list(0x55556caf1660, 24 <unfinished ...>
[pid   365] set_robust_list(0x55556caf1660, 24 <unfinished ...>
[pid   359] set_robust_list(0x55556caf1660, 24 <unfinished ...>
[pid   358] <... chmod resumed>)        = 0
[pid   359] <... set_robust_list resumed>) = 0
[pid   365] <... set_robust_list resumed>) = 0
[pid   364] <... set_robust_list resumed>) = 0
[pid   358] chdir("./syzkaller.aDc6zi" <unfinished ...>
[pid   364] chdir("./0" <unfinished ...>
[pid   358] <... chdir resumed>)        = 0
[pid   358] mkdir("./0", 0777 <unfinished ...>
[pid   364] <... chdir resumed>)        = 0
[pid   364] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   364] setpgid(0, 0 <unfinished ...>
[pid   365] chdir("./0" <unfinished ...>
[pid   364] <... setpgid resumed>)      = 0
[pid   359] mkdir("./syzkaller.P1RtK2", 0700 <unfinished ...>
[pid   365] <... chdir resumed>)        = 0
[pid   364] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   365] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   364] write(3, "1000", 4 <unfinished ...>
[pid   365] setpgid(0, 0 <unfinished ...>
[pid   364] <... write resumed>)        = 4
[pid   364] close(3 <unfinished ...>
[pid   365] <... setpgid resumed>)      = 0
[pid   365] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid   364] <... close resumed>)        = 0
[pid   365] <... openat resumed>)       = 3
[pid   364] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid   358] <... mkdir resumed>)        = 0
[pid   358] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3
[pid   358] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   364] <... symlink resumed>)      = 0
[pid   365] write(3, "1000", 4 <unfinished ...>
[pid   358] close(3)                    = 0
[pid   359] <... mkdir resumed>)        = 0
[pid   358] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid   359] chmod("./syzkaller.P1RtK2", 0777 <unfinished ...>
executing program
[pid   364] write(1, "executing program\n", 18 <unfinished ...>
[pid   365] <... write resumed>)        = 4
[pid   364] <... write resumed>)        = 18
[pid   359] <... chmod resumed>)        = 0
[pid   359] chdir("./syzkaller.P1RtK2" <unfinished ...>
[pid   365] close(3 <unfinished ...>
[pid   364] memfd_create("syzkaller", 0 <unfinished ...>
[pid   359] <... chdir resumed>)        = 0
[pid   364] <... memfd_create resumed>) = 3
[pid   365] <... close resumed>)        = 0
[pid   364] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid   365] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid   364] <... mmap resumed>)         = 0x7fb94d783000
[pid   359] mkdir("./0", 0777 <unfinished ...>
[pid   365] <... symlink resumed>)      = 0
[pid   359] <... mkdir resumed>)        = 0
[pid   358] <... clone resumed>, child_tidptr=0x55556caf1650) = 366
[pid   359] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3
[pid   359] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   359] close(3)                    = 0
[pid   359] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
executing program
[pid   365] write(1, "executing program\n", 18) = 18
[pid   359] <... clone resumed>, child_tidptr=0x55556caf1650) = 367
[pid   365] memfd_create("syzkaller", 0./strace-static-x86_64: Process 366 attached
) = 3
[pid   365] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   366] set_robust_list(0x55556caf1660, 24) = 0
[pid   366] chdir("./0")                = 0
[   22.207464][   T23] audit: type=1400 audit(1741886135.100:66): avc:  denied  { execmem } for  pid=355 comm="syz-executor300" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   22.220661][   T23] audit: type=1400 audit(1741886135.110:67): avc:  denied  { read write } for  pid=357 comm="syz-executor300" name="loop1" dev="devtmpfs" ino=152 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   22.228840][   T23] audit: type=1400 audit(1741886135.110:68): avc:  denied  { open } for  pid=357 comm="syz-executor300" path="/dev/loop1" dev="devtmpfs" ino=152 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[pid   366] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   366] setpgid(0, 0)               = 0
[pid   366] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   366] write(3, "1000", 4./strace-static-x86_64: Process 367 attached
)         = 4
[pid   366] close(3)                    = 0
[pid   367] set_robust_list(0x55556caf1660, 24 <unfinished ...>
[pid   366] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid   367] <... set_robust_list resumed>) = 0
[pid   366] <... symlink resumed>)      = 0
[pid   367] chdir("./0"executing program
 <unfinished ...>
[pid   366] write(1, "executing program\n", 18) = 18
[pid   367] <... chdir resumed>)        = 0
[pid   366] memfd_create("syzkaller", 0 <unfinished ...>
[pid   367] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid   366] <... memfd_create resumed>) = 3
[pid   366] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid   367] <... prctl resumed>)        = 0
[pid   367] setpgid(0, 0 <unfinished ...>
[pid   366] <... mmap resumed>)         = 0x7fb94d783000
[pid   367] <... setpgid resumed>)      = 0
[pid   367] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   367] write(3, "1000", 4)         = 4
[pid   367] close(3)                    = 0
[pid   367] symlink("/dev/binderfs", "./binderfs") = 0
[pid   367] write(1, "executing program\n", 18executing program
) = 18
[pid   367] memfd_create("syzkaller", 0) = 3
[pid   367] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[   22.316860][   T23] audit: type=1400 audit(1741886135.120:69): avc:  denied  { ioctl } for  pid=357 comm="syz-executor300" path="/dev/loop1" dev="devtmpfs" ino=152 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[pid   365] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   361] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   366] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   364] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   367] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   365] <... write resumed>)        = 20699119
[pid   366] <... write resumed>)        = 20699119
[pid   365] munmap(0x7fb94d783000, 138412032) = 0
[pid   366] munmap(0x7fb94d783000, 138412032 <unfinished ...>
[pid   365] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4
[pid   365] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   366] <... munmap resumed>)       = 0
[pid   366] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4
[pid   365] <... ioctl resumed>)        = 0
[pid   366] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   365] close(3)                    = 0
[pid   365] close(4 <unfinished ...>
[pid   361] <... write resumed>)        = 20699119
[pid   366] <... ioctl resumed>)        = 0
[pid   365] <... close resumed>)        = 0
[pid   361] munmap(0x7fb94d783000, 138412032 <unfinished ...>
[pid   366] close(3 <unfinished ...>
[pid   365] mkdir("./bus", 0777 <unfinished ...>
[pid   366] <... close resumed>)        = 0
[pid   365] <... mkdir resumed>)        = 0
[pid   366] close(4)                    = 0
[pid   365] mount("/dev/loop4", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   366] mkdir("./bus", 0777)        = 0
[pid   366] mount("/dev/loop2", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   361] <... munmap resumed>)       = 0
[pid   361] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   364] <... write resumed>)        = 20699119
[pid   364] munmap(0x7fb94d783000, 138412032) = 0
[pid   364] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   367] <... write resumed>)        = 20699119
[pid   367] munmap(0x7fb94d783000, 138412032) = 0
[pid   367] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   364] <... openat resumed>)       = 4
[pid   361] <... openat resumed>)       = 4
[pid   364] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[   22.747241][   T23] audit: type=1400 audit(1741886135.640:70): avc:  denied  { mounton } for  pid=365 comm="syz-executor300" path="/root/syzkaller.iU8IiS/0/bus" dev="sda1" ino=1942 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[   22.776541][  T365] F2FS-fs (loop4): invalid crc value
[pid   361] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   367] <... openat resumed>)       = 4
[pid   364] <... ioctl resumed>)        = 0
[pid   367] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   364] close(3)                    = 0
[pid   364] close(4 <unfinished ...>
[pid   361] <... ioctl resumed>)        = 0
[pid   361] close(3)                    = 0
[pid   361] close(4 <unfinished ...>
[pid   367] <... ioctl resumed>)        = 0
[pid   364] <... close resumed>)        = 0
[pid   364] mkdir("./bus", 0777)        = 0
[pid   367] close(3)                    = 0
[pid   367] close(4 <unfinished ...>
[   22.816332][  T365] F2FS-fs (loop4): recover fsync data on readonly fs
[   22.817932][  T366] F2FS-fs (loop2): invalid crc value
[   22.824797][  T365] F2FS-fs (loop4): Cannot turn on quotas: -2 on 0
[   22.837880][  T365] F2FS-fs (loop4): checkpoint=disable on readonly fs
[pid   364] mount("/dev/loop0", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   361] <... close resumed>)        = 0
[pid   361] mkdir("./bus", 0777)        = 0
[   22.863319][  T366] F2FS-fs (loop2): recover fsync data on readonly fs
[   22.870183][  T366] F2FS-fs (loop2): Cannot turn on quotas: -2 on 0
[   22.876621][  T366] F2FS-fs (loop2): checkpoint=disable on readonly fs
[pid   361] mount("/dev/loop1", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   367] <... close resumed>)        = 0
[pid   367] mkdir("./bus", 0777)        = 0
[   22.936207][  T364] F2FS-fs (loop0): invalid crc value
[   22.942282][  T367] F2FS-fs (loop3): invalid crc value
[   22.947801][  T361] F2FS-fs (loop1): invalid crc value
[pid   367] mount("/dev/loop3", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   366] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   366] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   365] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   366] <... openat resumed>)       = 3
[pid   366] ioctl(3, LOOP_CLR_FD <unfinished ...>
[   23.011717][  T364] F2FS-fs (loop0): recover fsync data on readonly fs
[   23.019605][  T364] F2FS-fs (loop0): Cannot turn on quotas: -2 on 0
[   23.026449][  T364] F2FS-fs (loop0): checkpoint=disable on readonly fs
[   23.031348][  T367] F2FS-fs (loop3): recover fsync data on readonly fs
[pid   365] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3
[   23.056185][  T361] F2FS-fs (loop1): recover fsync data on readonly fs
[   23.062857][  T367] F2FS-fs (loop3): Cannot turn on quotas: -2 on 0
[   23.069619][  T361] F2FS-fs (loop1): Cannot turn on quotas: -2 on 0
[   23.076370][  T367] F2FS-fs (loop3): checkpoint=disable on readonly fs
[   23.076384][  T361] F2FS-fs (loop1): checkpoint=disable on readonly fs
[pid   365] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   366] <... ioctl resumed>)        = 0
[pid   366] close(3 <unfinished ...>
[pid   364] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   364] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   364] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   365] <... ioctl resumed>)        = 0
[pid   365] close(3 <unfinished ...>
[pid   366] <... close resumed>)        = 0
[pid   366] memfd_create("syzkaller", 0) = 3
[pid   366] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   366] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144) = 262144
[pid   366] munmap(0x7fb94d783000, 138412032) = 0
[pid   366] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   361] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   361] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   367] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   367] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3
[pid   367] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   364] <... ioctl resumed>)        = 0
[pid   364] close(3 <unfinished ...>
[pid   365] <... close resumed>)        = 0
[pid   361] <... openat resumed>)       = 3
[pid   366] <... openat resumed>)       = 4
[pid   365] memfd_create("syzkaller", 0 <unfinished ...>
[pid   361] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   366] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid   366] close(3)                    = 0
[pid   366] close(4)                    = 0
[pid   366] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[pid   366] mount("/dev/loop2", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   365] <... memfd_create resumed>) = 3
[pid   365] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   365] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 <unfinished ...>
[pid   364] <... close resumed>)        = 0
[pid   365] <... write resumed>)        = 262144
[pid   365] munmap(0x7fb94d783000, 138412032) = 0
[pid   365] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   364] memfd_create("syzkaller", 0) = 3
[pid   364] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   364] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144) = 262144
[pid   364] munmap(0x7fb94d783000, 138412032) = 0
[pid   364] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   365] <... openat resumed>)       = 4
[pid   364] <... openat resumed>)       = 4
[pid   365] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   364] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid   364] close(3)                    = 0
[   23.419125][  T366] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue
[   23.436582][   T23] audit: type=1400 audit(1741886136.320:71): avc:  denied  { mount } for  pid=366 comm="syz-executor300" name="/" dev="loop2" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[pid   364] close(4 <unfinished ...>
[pid   365] <... ioctl resumed>)        = 0
[pid   365] close(3)                    = 0
[pid   365] close(4 <unfinished ...>
[pid   366] <... mount resumed>)        = 0
[pid   367] <... ioctl resumed>)        = 0
[pid   367] close(3 <unfinished ...>
[pid   366] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   366] chdir("./bus")              = 0
[   23.447116][  T366] ext4 filesystem being mounted at /root/syzkaller.aDc6zi/0/bus supports timestamps until (%ptR?) (0x7fffffff)
[pid   366] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   361] <... ioctl resumed>)        = 0
[pid   361] close(3 <unfinished ...>
[pid   365] <... close resumed>)        = 0
[pid   365] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[pid   365] mount("/dev/loop4", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   361] <... close resumed>)        = 0
[pid   361] memfd_create("syzkaller", 0) = 3
[pid   361] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   364] <... close resumed>)        = 0
[pid   364] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[pid   364] mount("/dev/loop0", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   361] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144) = 262144
[pid   361] munmap(0x7fb94d783000, 138412032) = 0
[pid   361] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   365] <... mount resumed>)        = 0
[pid   365] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   365] chdir("./bus")              = 0
[pid   365] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   366] <... openat resumed>)       = 4
[pid   366] ioctl(4, LOOP_CLR_FD)       = 0
[pid   366] close(4)                    = 0
[pid   366] exit_group(0)               = ?
[pid   366] +++ exited with 0 +++
[pid   358] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=366, si_uid=0, si_status=0, si_utime=7, si_stime=29} ---
[pid   358] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid   361] <... openat resumed>)       = 4
[pid   361] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   367] <... close resumed>)        = 0
[pid   361] <... ioctl resumed>)        = 0
[pid   361] close(3)                    = 0
[pid   361] close(4 <unfinished ...>
[pid   365] <... openat resumed>)       = 4
[pid   365] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid   367] memfd_create("syzkaller", 0) = 3
[pid   367] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   367] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144) = 262144
[pid   367] munmap(0x7fb94d783000, 138412032) = 0
[pid   367] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   358] <... restart_syscall resumed>) = 0
[pid   358] umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[   23.542374][  T365] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
[   23.551279][  T365] ext4 filesystem being mounted at /root/syzkaller.iU8IiS/0/bus supports timestamps until (%ptR?) (0x7fffffff)
[pid   358] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   358] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   358] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   358] umount2("./0/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   358] newfstatat(AT_FDCWD, "./0/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   358] unlink("./0/binderfs")      = 0
[pid   358] umount2("./0/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   364] <... mount resumed>)        = 0
[pid   364] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   364] chdir("./bus")              = 0
[pid   364] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   361] <... close resumed>)        = 0
[pid   365] <... ioctl resumed>)        = 0
[pid   361] mkdir("./bus", 0777 <unfinished ...>
[pid   365] close(4 <unfinished ...>
[pid   361] <... mkdir resumed>)        = -1 EEXIST (File exists)
[   23.599050][  T364] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[   23.604614][   T23] audit: type=1400 audit(1741886136.490:72): avc:  denied  { unmount } for  pid=358 comm="syz-executor300" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   23.608186][  T364] ext4 filesystem being mounted at /root/syzkaller.RLArfL/0/bus supports timestamps until (%ptR?) (0x7fffffff)
[pid   361] mount("/dev/loop1", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   367] <... openat resumed>)       = 4
[pid   364] <... openat resumed>)       = 4
[pid   364] ioctl(4, LOOP_CLR_FD)       = 0
[pid   364] close(4)                    = 0
[pid   364] exit_group(0)               = ?
[pid   367] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   364] +++ exited with 0 +++
[pid   367] <... ioctl resumed>)        = 0
[pid   367] close(3 <unfinished ...>
[pid   356] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=364, si_uid=0, si_status=0, si_utime=5, si_stime=28} ---
[pid   367] <... close resumed>)        = 0
[pid   367] close(4 <unfinished ...>
[pid   356] umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   356] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   356] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   356] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   356] umount2("./0/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   356] newfstatat(AT_FDCWD, "./0/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   356] unlink("./0/binderfs")      = 0
[pid   356] umount2("./0/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   365] <... close resumed>)        = 0
[pid   365] exit_group(0)               = ?
[pid   365] +++ exited with 0 +++
[pid   360] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=365, si_uid=0, si_status=0, si_utime=5, si_stime=27} ---
[pid   360] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   360] umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   360] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   360] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   360] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   360] umount2("./0/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   360] newfstatat(AT_FDCWD, "./0/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   360] unlink("./0/binderfs")      = 0
[pid   360] umount2("./0/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   361] <... mount resumed>)        = 0
[pid   367] <... close resumed>)        = 0
[pid   361] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid   367] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[pid   361] <... openat resumed>)       = 3
[pid   358] <... umount2 resumed>)      = 0
[pid   356] <... umount2 resumed>)      = 0
[pid   367] mount("/dev/loop3", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   361] chdir("./bus" <unfinished ...>
[pid   356] umount2("./0/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   361] <... chdir resumed>)        = 0
[pid   358] umount2("./0/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   356] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   361] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   358] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   356] newfstatat(AT_FDCWD, "./0/bus",  <unfinished ...>
[pid   358] newfstatat(AT_FDCWD, "./0/bus",  <unfinished ...>
[pid   356] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   358] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   358] umount2("./0/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   356] umount2("./0/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   358] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   356] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   358] openat(AT_FDCWD, "./0/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid   356] openat(AT_FDCWD, "./0/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid   358] <... openat resumed>)       = 4
[pid   356] <... openat resumed>)       = 4
[pid   358] newfstatat(4, "",  <unfinished ...>
[pid   356] newfstatat(4, "",  <unfinished ...>
[pid   358] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   356] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   358] getdents64(4,  <unfinished ...>
[pid   356] getdents64(4,  <unfinished ...>
[pid   358] <... getdents64 resumed>0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   356] <... getdents64 resumed>0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   358] getdents64(4,  <unfinished ...>
[pid   356] getdents64(4,  <unfinished ...>
[pid   358] <... getdents64 resumed>0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   356] <... getdents64 resumed>0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   358] close(4 <unfinished ...>
[pid   356] close(4 <unfinished ...>
[pid   358] <... close resumed>)        = 0
[pid   356] <... close resumed>)        = 0
[pid   358] rmdir("./0/bus" <unfinished ...>
[pid   356] rmdir("./0/bus" <unfinished ...>
[pid   358] <... rmdir resumed>)        = 0
[pid   356] <... rmdir resumed>)        = 0
[pid   358] getdents64(3,  <unfinished ...>
[pid   356] getdents64(3,  <unfinished ...>
[pid   358] <... getdents64 resumed>0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   356] <... getdents64 resumed>0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   358] close(3 <unfinished ...>
[pid   356] close(3 <unfinished ...>
[pid   358] <... close resumed>)        = 0
[pid   356] <... close resumed>)        = 0
[pid   358] rmdir("./0" <unfinished ...>
[pid   356] rmdir("./0" <unfinished ...>
[pid   358] <... rmdir resumed>)        = 0
[pid   356] <... rmdir resumed>)        = 0
[pid   358] mkdir("./1", 0777 <unfinished ...>
[pid   356] mkdir("./1", 0777)          = 0
[pid   356] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   358] <... mkdir resumed>)        = 0
[pid   358] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   356] <... openat resumed>)       = 3
[pid   356] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   356] close(3)                    = 0
[pid   356] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55556caf1650) = 398
[pid   361] <... openat resumed>)       = 4
[pid   361] ioctl(4, LOOP_CLR_FD)       = 0
[pid   361] close(4)                    = 0
[pid   361] exit_group(0)               = ?
[pid   361] +++ exited with 0 +++
[   23.730523][  T361] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue
[   23.739408][  T361] ext4 filesystem being mounted at /root/syzkaller.c2lmo2/0/bus supports timestamps until (%ptR?) (0x7fffffff)
[pid   358] <... openat resumed>)       = 3
[pid   358] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   357] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=361, si_uid=0, si_status=0, si_utime=6, si_stime=21} ---
./strace-static-x86_64: Process 398 attached
[pid   357] umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   357] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   357] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   357] umount2("./0/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] newfstatat(AT_FDCWD, "./0/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   357] unlink("./0/binderfs")      = 0
[pid   357] umount2("./0/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   398] set_robust_list(0x55556caf1660, 24) = 0
[pid   398] chdir("./1")                = 0
[pid   398] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   398] setpgid(0, 0)               = 0
[pid   398] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   398] write(3, "1000", 4)         = 4
[pid   398] close(3)                    = 0
[pid   398] symlink("/dev/binderfs", "./binderfs"executing program
) = 0
[pid   398] write(1, "executing program\n", 18) = 18
[pid   398] memfd_create("syzkaller", 0) = 3
[pid   398] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   367] <... mount resumed>)        = 0
[pid   367] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   367] chdir("./bus")              = 0
[   23.785675][  T367] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[   23.795528][  T367] ext4 filesystem being mounted at /root/syzkaller.P1RtK2/0/bus supports timestamps until (%ptR?) (0x7fffffff)
[pid   367] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   360] <... umount2 resumed>)      = 0
[pid   358] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid   367] <... openat resumed>)       = 4
[pid   360] umount2("./0/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   358] close(3 <unfinished ...>
[pid   367] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid   358] <... close resumed>)        = 0
[pid   367] <... ioctl resumed>)        = 0
[pid   367] close(4 <unfinished ...>
[pid   360] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   358] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid   367] <... close resumed>)        = 0
[pid   360] newfstatat(AT_FDCWD, "./0/bus",  <unfinished ...>
[pid   358] <... clone resumed>, child_tidptr=0x55556caf1650) = 399
[pid   367] exit_group(0 <unfinished ...>
[pid   360] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   367] <... exit_group resumed>)   = ?
[pid   367] +++ exited with 0 +++
[pid   360] umount2("./0/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   359] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=367, si_uid=0, si_status=0, si_utime=7, si_stime=31} ---
[pid   359] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid   360] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   360] openat(AT_FDCWD, "./0/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY./strace-static-x86_64: Process 399 attached
 <unfinished ...>
[pid   399] set_robust_list(0x55556caf1660, 24) = 0
[pid   399] chdir("./1")                = 0
[pid   399] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   399] setpgid(0, 0)               = 0
[pid   399] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   399] write(3, "1000", 4 <unfinished ...>
[pid   360] <... openat resumed>)       = 4
[pid   398] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   359] <... restart_syscall resumed>) = 0
[pid   359] umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   360] newfstatat(4, "",  <unfinished ...>
[pid   359] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   360] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   399] <... write resumed>)        = 4
[pid   359] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid   399] close(3 <unfinished ...>
[pid   359] <... openat resumed>)       = 3
[pid   399] <... close resumed>)        = 0
[pid   359] newfstatat(3, "",  <unfinished ...>
[pid   399] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid   359] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   399] <... symlink resumed>)      = 0
[pid   359] getdents64(3, executing program
 <unfinished ...>
[pid   399] write(1, "executing program\n", 18 <unfinished ...>
[pid   359] <... getdents64 resumed>0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   399] <... write resumed>)        = 18
[pid   359] umount2("./0/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   399] memfd_create("syzkaller", 0 <unfinished ...>
[pid   359] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   360] getdents64(4,  <unfinished ...>
[pid   399] <... memfd_create resumed>) = 3
[pid   359] newfstatat(AT_FDCWD, "./0/binderfs",  <unfinished ...>
[pid   399] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid   359] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   399] <... mmap resumed>)         = 0x7fb94d783000
[pid   359] unlink("./0/binderfs" <unfinished ...>
[pid   360] <... getdents64 resumed>0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   359] <... unlink resumed>)       = 0
[pid   359] umount2("./0/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   360] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   359] <... umount2 resumed>)      = 0
[pid   359] umount2("./0/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   359] newfstatat(AT_FDCWD, "./0/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   359] umount2("./0/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   359] openat(AT_FDCWD, "./0/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   359] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   359] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   359] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   359] close(4)                    = 0
[pid   359] rmdir("./0/bus")            = 0
[pid   359] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   359] close(3)                    = 0
[pid   359] rmdir("./0")                = 0
[pid   359] mkdir("./1", 0777)          = 0
[pid   359] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3
[pid   359] ioctl(3, LOOP_CLR_FD)       = 0
[pid   359] close(3)                    = 0
[pid   359] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55556caf1650) = 400
[pid   360] close(4)                    = 0
[pid   360] rmdir("./0/bus" <unfinished ...>
[pid   357] <... umount2 resumed>)      = 0
[pid   360] <... rmdir resumed>)        = 0
[pid   360] getdents64(3,  <unfinished ...>
[pid   357] umount2("./0/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   360] <... getdents64 resumed>0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   360] close(3 <unfinished ...>
[pid   357] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   360] <... close resumed>)        = 0
[pid   360] rmdir("./0" <unfinished ...>
[pid   357] newfstatat(AT_FDCWD, "./0/bus",  <unfinished ...>
[pid   360] <... rmdir resumed>)        = 0
[pid   357] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   360] mkdir("./1", 0777 <unfinished ...>
[pid   357] umount2("./0/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   360] <... mkdir resumed>)        = 0
[pid   357] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   357] openat(AT_FDCWD, "./0/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   360] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   357] newfstatat(4, "",  <unfinished ...>
[pid   360] <... openat resumed>)       = 3
./strace-static-x86_64: Process 400 attached
[pid   357] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   360] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   357] getdents64(4,  <unfinished ...>
[pid   400] set_robust_list(0x55556caf1660, 24) = 0
[pid   357] <... getdents64 resumed>0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   360] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid   400] chdir("./1"executing program
 <unfinished ...>
[pid   357] getdents64(4,  <unfinished ...>
[pid   360] close(3 <unfinished ...>
[pid   357] <... getdents64 resumed>0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   357] close(4 <unfinished ...>
[pid   400] <... chdir resumed>)        = 0
[pid   360] <... close resumed>)        = 0
[pid   357] <... close resumed>)        = 0
[pid   360] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid   400] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   400] setpgid(0, 0)               = 0
[pid   400] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   400] write(3, "1000", 4)         = 4
[pid   400] close(3)                    = 0
[pid   400] symlink("/dev/binderfs", "./binderfs") = 0
[pid   400] write(1, "executing program\n", 18) = 18
[pid   400] memfd_create("syzkaller", 0) = 3
[pid   400] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   357] rmdir("./0/bus")            = 0
[pid   360] <... clone resumed>, child_tidptr=0x55556caf1650) = 401
[pid   357] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   357] close(3)                    = 0
[pid   357] rmdir("./0")                = 0
[pid   357] mkdir("./1", 0777)          = 0
./strace-static-x86_64: Process 401 attached
[pid   401] set_robust_list(0x55556caf1660, 24) = 0
[pid   401] chdir("./1" <unfinished ...>
[pid   357] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   401] <... chdir resumed>)        = 0
[pid   401] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   401] setpgid(0, 0)               = 0
[pid   401] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   401] write(3, "1000", 4)         = 4
[pid   401] close(3)                    = 0
[pid   401] symlink("/dev/binderfs", "./binderfs") = 0
[pid   401] write(1, "executing program\n", 18executing program
) = 18
[pid   401] memfd_create("syzkaller", 0) = 3
[pid   401] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   357] <... openat resumed>)       = 3
[pid   357] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   357] close(3)                    = 0
[pid   357] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55556caf1650) = 402
./strace-static-x86_64: Process 402 attached
[pid   402] set_robust_list(0x55556caf1660, 24) = 0
[pid   402] chdir("./1")                = 0
[pid   402] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   402] setpgid(0, 0)               = 0
[pid   402] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   402] write(3, "1000", 4)         = 4
[pid   402] close(3)                    = 0
[pid   402] symlink("/dev/binderfs", "./binderfs") = 0
[pid   402] write(1, "executing program\n", 18executing program
) = 18
[pid   402] memfd_create("syzkaller", 0) = 3
[pid   402] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   398] <... write resumed>)        = 20699119
[pid   398] munmap(0x7fb94d783000, 138412032) = 0
[pid   398] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid   398] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid   398] close(3)                    = 0
[pid   398] close(4)                    = 0
[pid   398] mkdir("./bus", 0777)        = 0
[pid   398] mount("/dev/loop0", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[   24.074395][  T398] F2FS-fs (loop0): invalid crc value
[pid   399] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   401] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   400] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[   24.157912][  T398] F2FS-fs (loop0): recover fsync data on readonly fs
[   24.175114][  T398] F2FS-fs (loop0): Cannot turn on quotas: -2 on 0
[   24.195837][  T398] F2FS-fs (loop0): checkpoint=disable on readonly fs
[pid   402] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   399] <... write resumed>)        = 20699119
[pid   399] munmap(0x7fb94d783000, 138412032) = 0
[pid   399] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4
[pid   399] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid   399] close(3)                    = 0
[pid   399] close(4)                    = 0
[pid   399] mkdir("./bus", 0777)        = 0
[pid   399] mount("/dev/loop2", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   402] <... write resumed>)        = 20699119
[pid   402] munmap(0x7fb94d783000, 138412032 <unfinished ...>
[pid   400] <... write resumed>)        = 20699119
[pid   400] munmap(0x7fb94d783000, 138412032 <unfinished ...>
[pid   402] <... munmap resumed>)       = 0
[pid   402] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   400] <... munmap resumed>)       = 0
[pid   400] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   401] <... write resumed>)        = 20699119
[pid   401] munmap(0x7fb94d783000, 138412032) = 0
[pid   401] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   402] <... openat resumed>)       = 4
[pid   400] <... openat resumed>)       = 4
[pid   398] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   398] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   398] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   402] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[   24.392551][  T399] F2FS-fs (loop2): invalid crc value
[pid   400] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   401] <... openat resumed>)       = 4
[pid   401] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid   401] close(3)                    = 0
[pid   401] close(4 <unfinished ...>
[pid   402] <... ioctl resumed>)        = 0
[pid   402] close(3)                    = 0
[pid   402] close(4 <unfinished ...>
[pid   400] <... ioctl resumed>)        = 0
[pid   400] close(3)                    = 0
[pid   400] close(4 <unfinished ...>
[pid   402] <... close resumed>)        = 0
[pid   401] <... close resumed>)        = 0
[   24.418216][  T399] F2FS-fs (loop2): recover fsync data on readonly fs
[   24.424865][  T399] F2FS-fs (loop2): Cannot turn on quotas: -2 on 0
[   24.431474][  T399] F2FS-fs (loop2): checkpoint=disable on readonly fs
[pid   401] mkdir("./bus", 0777 <unfinished ...>
[pid   402] mkdir("./bus", 0777 <unfinished ...>
[pid   401] <... mkdir resumed>)        = 0
[pid   402] <... mkdir resumed>)        = 0
[pid   402] mount("/dev/loop1", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   401] mount("/dev/loop4", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   398] <... ioctl resumed>)        = 0
[pid   398] close(3 <unfinished ...>
[pid   400] <... close resumed>)        = 0
[pid   400] mkdir("./bus", 0777)        = 0
[pid   400] mount("/dev/loop3", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   398] <... close resumed>)        = 0
[pid   398] memfd_create("syzkaller", 0) = 3
[pid   398] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   398] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144) = 262144
[pid   398] munmap(0x7fb94d783000, 138412032) = 0
[pid   398] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   399] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   398] <... openat resumed>)       = 4
[pid   399] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3
[pid   398] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[   24.508644][  T402] F2FS-fs (loop1): invalid crc value
[   24.514019][  T400] F2FS-fs (loop3): invalid crc value
[   24.570667][  T401] F2FS-fs (loop4): invalid crc value
[   24.572837][  T400] F2FS-fs (loop3): recover fsync data on readonly fs
[   24.590745][  T400] F2FS-fs (loop3): Cannot turn on quotas: -2 on 0
[   24.599205][  T402] F2FS-fs (loop1): recover fsync data on readonly fs
[   24.606403][  T402] F2FS-fs (loop1): Cannot turn on quotas: -2 on 0
[   24.613526][  T400] F2FS-fs (loop3): checkpoint=disable on readonly fs
[pid   399] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   398] <... ioctl resumed>)        = 0
[pid   398] close(3)                    = 0
[pid   398] close(4)                    = 0
[pid   398] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[   24.620522][  T402] F2FS-fs (loop1): checkpoint=disable on readonly fs
[   24.655029][  T398] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[pid   398] mount("/dev/loop0", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue") = 0
[pid   398] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   398] chdir("./bus")              = 0
[pid   398] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid   398] ioctl(4, LOOP_CLR_FD)       = 0
[pid   398] close(4)                    = 0
[pid   398] exit_group(0)               = ?
[pid   398] +++ exited with 0 +++
[pid   356] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=398, si_uid=0, si_status=0, si_utime=4, si_stime=22} ---
[pid   356] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   356] umount2("./1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   356] openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   356] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   356] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   356] umount2("./1/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   356] newfstatat(AT_FDCWD, "./1/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   356] unlink("./1/binderfs")      = 0
[pid   356] umount2("./1/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   399] <... ioctl resumed>)        = 0
[   24.674616][  T398] ext4 filesystem being mounted at /root/syzkaller.RLArfL/1/bus supports timestamps until (%ptR?) (0x7fffffff)
[   24.689060][  T401] F2FS-fs (loop4): recover fsync data on readonly fs
[   24.695860][  T401] F2FS-fs (loop4): Cannot turn on quotas: -2 on 0
[   24.702769][  T401] F2FS-fs (loop4): checkpoint=disable on readonly fs
[pid   399] close(3)                    = 0
[pid   356] <... umount2 resumed>)      = 0
[pid   399] memfd_create("syzkaller", 0) = 3
[pid   399] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   399] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144) = 262144
[pid   356] umount2("./1/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   356] newfstatat(AT_FDCWD, "./1/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   356] umount2("./1/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   356] openat(AT_FDCWD, "./1/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   356] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   356] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   356] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   399] munmap(0x7fb94d783000, 138412032) = 0
[pid   356] close(4 <unfinished ...>
[pid   399] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   356] <... close resumed>)        = 0
[pid   356] rmdir("./1/bus")            = 0
[pid   356] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   356] close(3)                    = 0
[pid   356] rmdir("./1")                = 0
[pid   356] mkdir("./2", 0777)          = 0
[pid   356] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   400] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   356] <... openat resumed>)       = 3
[pid   400] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   399] <... openat resumed>)       = 4
[pid   400] <... openat resumed>)       = 3
[pid   356] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   400] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   399] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   356] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid   356] close(3 <unfinished ...>
[pid   399] <... ioctl resumed>)        = 0
[pid   356] <... close resumed>)        = 0
[pid   399] close(3 <unfinished ...>
[pid   356] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid   399] <... close resumed>)        = 0
[pid   399] close(4 <unfinished ...>
[pid   356] <... clone resumed>, child_tidptr=0x55556caf1650) = 418
./strace-static-x86_64: Process 418 attached
[pid   418] set_robust_list(0x55556caf1660, 24) = 0
[pid   418] chdir("./2")                = 0
[pid   418] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   418] setpgid(0, 0)               = 0
[pid   418] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   418] write(3, "1000", 4)         = 4
[pid   418] close(3)                    = 0
[pid   418] symlink("/dev/binderfs", "./binderfs"executing program
) = 0
[pid   418] write(1, "executing program\n", 18) = 18
[pid   418] memfd_create("syzkaller", 0) = 3
[pid   418] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   402] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   402] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   400] <... ioctl resumed>)        = 0
[pid   400] close(3 <unfinished ...>
[pid   418] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   402] <... openat resumed>)       = 3
[pid   401] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   399] <... close resumed>)        = 0
[pid   400] <... close resumed>)        = 0
[pid   400] memfd_create("syzkaller", 0) = 3
[pid   400] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   400] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144) = 262144
[pid   400] munmap(0x7fb94d783000, 138412032 <unfinished ...>
[pid   402] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   401] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   399] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[pid   399] mount("/dev/loop2", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   400] <... munmap resumed>)       = 0
[pid   400] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   418] <... write resumed>)        = 20699119
[pid   418] munmap(0x7fb94d783000, 138412032) = 0
[pid   418] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   401] <... openat resumed>)       = 3
[pid   400] <... openat resumed>)       = 4
[pid   400] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid   400] close(3)                    = 0
[pid   401] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   400] close(4 <unfinished ...>
[pid   418] <... openat resumed>)       = 4
[pid   418] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid   418] close(3)                    = 0
[pid   418] close(4 <unfinished ...>
[pid   399] <... mount resumed>)        = 0
[pid   399] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   399] chdir("./bus")              = 0
[pid   399] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   418] <... close resumed>)        = 0
[pid   418] mkdir("./bus", 0777)        = 0
[pid   418] mount("/dev/loop0", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   402] <... ioctl resumed>)        = 0
[   25.099167][  T399] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue
[   25.108449][  T399] ext4 filesystem being mounted at /root/syzkaller.aDc6zi/1/bus supports timestamps until (%ptR?) (0x7fffffff)
[   25.126189][  T418] F2FS-fs (loop0): invalid crc value
[pid   402] close(3 <unfinished ...>
[pid   400] <... close resumed>)        = 0
[pid   399] <... openat resumed>)       = 4
[pid   399] ioctl(4, LOOP_CLR_FD)       = 0
[pid   399] close(4)                    = 0
[pid   399] exit_group(0)               = ?
[pid   400] mkdir("./bus", 0777 <unfinished ...>
[pid   399] +++ exited with 0 +++
[pid   400] <... mkdir resumed>)        = -1 EEXIST (File exists)
[pid   400] mount("/dev/loop3", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   358] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=399, si_uid=0, si_status=0, si_utime=5, si_stime=26} ---
[pid   358] umount2("./1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   358] openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   358] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   358] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   358] umount2("./1/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   358] newfstatat(AT_FDCWD, "./1/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   358] unlink("./1/binderfs")      = 0
[pid   358] umount2("./1/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   402] <... close resumed>)        = 0
[pid   402] memfd_create("syzkaller", 0) = 3
[pid   402] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[   25.159253][  T418] F2FS-fs (loop0): recover fsync data on readonly fs
[   25.167482][  T418] F2FS-fs (loop0): Cannot turn on quotas: -2 on 0
[   25.174184][  T418] F2FS-fs (loop0): checkpoint=disable on readonly fs
[pid   402] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144) = 262144
[pid   402] munmap(0x7fb94d783000, 138412032) = 0
[pid   402] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   401] <... ioctl resumed>)        = 0
[pid   401] close(3 <unfinished ...>
[pid   402] <... openat resumed>)       = 4
[pid   401] <... close resumed>)        = 0
[pid   358] <... umount2 resumed>)      = 0
[pid   402] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   358] umount2("./1/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   358] newfstatat(AT_FDCWD, "./1/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   358] umount2("./1/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   358] openat(AT_FDCWD, "./1/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   358] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   358] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   358] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   358] close(4)                    = 0
[pid   358] rmdir("./1/bus")            = 0
[pid   358] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   358] close(3)                    = 0
[pid   358] rmdir("./1")                = 0
[pid   358] mkdir("./2", 0777 <unfinished ...>
[pid   401] memfd_create("syzkaller", 0 <unfinished ...>
[pid   358] <... mkdir resumed>)        = 0
[pid   402] <... ioctl resumed>)        = 0
[pid   358] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3
[pid   358] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   358] close(3)                    = 0
[pid   358] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55556caf1650) = 426
[pid   402] close(3 <unfinished ...>
[pid   401] <... memfd_create resumed>) = 3
[pid   402] <... close resumed>)        = 0
[pid   401] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid   402] close(4 <unfinished ...>
[pid   401] <... mmap resumed>)         = 0x7fb94d783000
[pid   401] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144./strace-static-x86_64: Process 426 attached
 <unfinished ...>
[pid   426] set_robust_list(0x55556caf1660, 24) = 0
[pid   426] chdir("./2")                = 0
[pid   426] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   426] setpgid(0, 0)               = 0
[pid   426] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   426] write(3, "1000", 4)         = 4
[pid   426] close(3)                    = 0
[pid   426] symlink("/dev/binderfs", "./binderfs"executing program
) = 0
[pid   426] write(1, "executing program\n", 18) = 18
[pid   426] memfd_create("syzkaller", 0) = 3
[pid   426] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   401] <... write resumed>)        = 262144
[pid   401] munmap(0x7fb94d783000, 138412032) = 0
[pid   401] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   402] <... close resumed>)        = 0
[pid   400] <... mount resumed>)        = 0
[pid   402] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[pid   402] mount("/dev/loop1", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   400] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   400] chdir("./bus")              = 0
[   25.274296][  T400] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[   25.285565][  T400] ext4 filesystem being mounted at /root/syzkaller.P1RtK2/1/bus supports timestamps until (%ptR?) (0x7fffffff)
[pid   400] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   418] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   401] <... openat resumed>)       = 4
[pid   418] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   401] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid   401] close(3)                    = 0
[pid   401] close(4 <unfinished ...>
[pid   426] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   402] <... mount resumed>)        = 0
[pid   402] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   402] chdir("./bus")              = 0
[pid   402] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   400] <... openat resumed>)       = 4
[pid   418] <... openat resumed>)       = 3
[pid   401] <... close resumed>)        = 0
[pid   418] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   401] mkdir("./bus", 0777 <unfinished ...>
[pid   400] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid   401] <... mkdir resumed>)        = -1 EEXIST (File exists)
[pid   401] mount("/dev/loop4", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   426] <... write resumed>)        = 20699119
[   25.349399][  T402] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue
[   25.358667][  T402] ext4 filesystem being mounted at /root/syzkaller.c2lmo2/1/bus supports timestamps until (%ptR?) (0x7fffffff)
[pid   426] munmap(0x7fb94d783000, 138412032) = 0
[pid   426] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4
[pid   426] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid   426] close(3)                    = 0
[pid   426] close(4)                    = 0
[pid   400] <... ioctl resumed>)        = 0
[pid   402] <... openat resumed>)       = 4
[pid   402] ioctl(4, LOOP_CLR_FD)       = 0
[pid   402] close(4)                    = 0
[pid   402] exit_group(0)               = ?
[pid   402] +++ exited with 0 +++
[pid   400] close(4 <unfinished ...>
[pid   357] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=402, si_uid=0, si_status=0, si_utime=5, si_stime=27} ---
[pid   400] <... close resumed>)        = 0
[pid   357] umount2("./1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   357] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   357] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   357] umount2("./1/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] newfstatat(AT_FDCWD, "./1/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   357] unlink("./1/binderfs")      = 0
[pid   357] umount2("./1/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   400] exit_group(0 <unfinished ...>
[pid   426] mkdir("./bus", 0777)        = 0
[pid   426] mount("/dev/loop2", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   400] <... exit_group resumed>)   = ?
[pid   400] +++ exited with 0 +++
[pid   359] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=400, si_uid=0, si_status=0, si_utime=6, si_stime=28} ---
[pid   357] <... umount2 resumed>)      = 0
[pid   359] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid   357] umount2("./1/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] newfstatat(AT_FDCWD, "./1/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   357] umount2("./1/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] openat(AT_FDCWD, "./1/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   357] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   357] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   357] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   357] close(4)                    = 0
[pid   357] rmdir("./1/bus")            = 0
[pid   357] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   357] close(3)                    = 0
[pid   357] rmdir("./1")                = 0
[pid   357] mkdir("./2", 0777)          = 0
[pid   357] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   359] <... restart_syscall resumed>) = 0
[pid   359] umount2("./1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   359] openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   357] <... openat resumed>)       = 3
[pid   357] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   357] close(3)                    = 0
[pid   357] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55556caf1650) = 435
[pid   359] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   359] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   359] umount2("./1/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   359] newfstatat(AT_FDCWD, "./1/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   359] unlink("./1/binderfs")      = 0
[pid   359] umount2("./1/bus", MNT_FORCE|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 435 attached
 <unfinished ...>
[pid   435] set_robust_list(0x55556caf1660, 24) = 0
[pid   435] chdir("./2")                = 0
[pid   435] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   435] setpgid(0, 0)               = 0
[pid   435] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   435] write(3, "1000", 4 <unfinished ...>
[pid   401] <... mount resumed>)        = 0
[pid   401] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   401] chdir("./bus")              = 0
[pid   401] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   435] <... write resumed>)        = 4
[pid   435] close(3)                    = 0
[pid   435] symlink("/dev/binderfs", "./binderfs") = 0
[pid   435] write(1, "executing program\n", 18executing program
) = 18
[pid   435] memfd_create("syzkaller", 0) = 3
[pid   435] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[   25.502244][  T401] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
[   25.505199][  T426] F2FS-fs (loop2): invalid crc value
[   25.516523][  T401] ext4 filesystem being mounted at /root/syzkaller.iU8IiS/1/bus supports timestamps until (%ptR?) (0x7fffffff)
[pid   418] <... ioctl resumed>)        = 0
[pid   418] close(3 <unfinished ...>
[pid   359] <... umount2 resumed>)      = 0
[pid   418] <... close resumed>)        = 0
[pid   401] <... openat resumed>)       = 4
[pid   359] umount2("./1/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   418] memfd_create("syzkaller", 0 <unfinished ...>
[pid   401] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid   359] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   418] <... memfd_create resumed>) = 3
[pid   401] <... ioctl resumed>)        = 0
[pid   359] newfstatat(AT_FDCWD, "./1/bus",  <unfinished ...>
[pid   418] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid   401] close(4 <unfinished ...>
[pid   359] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   418] <... mmap resumed>)         = 0x7fb94d783000
[pid   401] <... close resumed>)        = 0
[pid   359] umount2("./1/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   418] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 <unfinished ...>
[pid   401] exit_group(0 <unfinished ...>
[pid   359] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   401] <... exit_group resumed>)   = ?
[pid   359] openat(AT_FDCWD, "./1/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid   401] +++ exited with 0 +++
[pid   359] <... openat resumed>)       = 4
[pid   359] newfstatat(4, "",  <unfinished ...>
[pid   360] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=401, si_uid=0, si_status=0, si_utime=9, si_stime=25} ---
[pid   359] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   360] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid   359] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   359] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   359] close(4)                    = 0
[pid   359] rmdir("./1/bus")            = 0
[pid   359] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   418] <... write resumed>)        = 262144
[pid   359] close(3)                    = 0
[pid   359] rmdir("./1")                = 0
[pid   359] mkdir("./2", 0777)          = 0
[pid   359] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3
[pid   359] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   359] close(3)                    = 0
[pid   359] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid   418] munmap(0x7fb94d783000, 138412032) = 0
[pid   359] <... clone resumed>, child_tidptr=0x55556caf1650) = 436
[pid   418] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid   418] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   360] <... restart_syscall resumed>) = 0
[pid   360] umount2("./1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   360] openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   360] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   360] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   360] umount2("./1/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   360] newfstatat(AT_FDCWD, "./1/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   360] unlink("./1/binderfs")      = 0
[pid   360] umount2("./1/bus", MNT_FORCE|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 436 attached
 <unfinished ...>
[pid   436] set_robust_list(0x55556caf1660, 24) = 0
[pid   436] chdir("./2")                = 0
[pid   436] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   436] setpgid(0, 0)               = 0
[pid   436] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   436] write(3, "1000", 4)         = 4
[pid   418] <... ioctl resumed>)        = 0
[pid   418] close(3)                    = 0
[pid   418] close(4 <unfinished ...>
[pid   436] close(3)                    = 0
[pid   436] symlink("/dev/binderfs", "./binderfs") = 0
[pid   436] write(1, "executing program\n", 18executing program
) = 18
[pid   436] memfd_create("syzkaller", 0) = 3
[pid   436] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[   25.595597][  T426] F2FS-fs (loop2): recover fsync data on readonly fs
[   25.603313][  T426] F2FS-fs (loop2): Cannot turn on quotas: -2 on 0
[   25.610857][  T426] F2FS-fs (loop2): checkpoint=disable on readonly fs
[pid   435] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   418] <... close resumed>)        = 0
[pid   360] <... umount2 resumed>)      = 0
[pid   418] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[pid   418] mount("/dev/loop0", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   436] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   360] umount2("./1/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   360] newfstatat(AT_FDCWD, "./1/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   360] umount2("./1/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   360] openat(AT_FDCWD, "./1/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   360] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   360] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   360] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   360] close(4)                    = 0
[pid   360] rmdir("./1/bus")            = 0
[pid   360] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   360] close(3)                    = 0
[pid   360] rmdir("./1")                = 0
[pid   360] mkdir("./2", 0777)          = 0
[pid   360] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3
[pid   360] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   360] close(3)                    = 0
[pid   360] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55556caf1650) = 438
./strace-static-x86_64: Process 438 attached
[pid   438] set_robust_list(0x55556caf1660, 24) = 0
[pid   438] chdir("./2")                = 0
[pid   438] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   438] setpgid(0, 0)               = 0
[pid   438] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   438] write(3, "1000", 4)         = 4
[pid   438] close(3)                    = 0
[pid   438] symlink("/dev/binderfs", "./binderfs") = 0
[pid   438] write(1, "executing program\n", 18executing program
) = 18
[pid   438] memfd_create("syzkaller", 0) = 3
[pid   438] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   435] <... write resumed>)        = 20699119
[pid   435] munmap(0x7fb94d783000, 138412032 <unfinished ...>
[pid   418] <... mount resumed>)        = 0
[pid   418] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   418] chdir("./bus")              = 0
[pid   418] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   435] <... munmap resumed>)       = 0
[pid   435] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   426] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   418] <... openat resumed>)       = 4
[pid   418] ioctl(4, LOOP_CLR_FD)       = 0
[pid   418] close(4 <unfinished ...>
[pid   426] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3
[pid   418] <... close resumed>)        = 0
[pid   435] <... openat resumed>)       = 4
[pid   435] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   426] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   418] exit_group(0)               = ?
[pid   435] <... ioctl resumed>)        = 0
[pid   435] close(3)                    = 0
[pid   435] close(4 <unfinished ...>
[pid   418] +++ exited with 0 +++
[pid   356] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=418, si_uid=0, si_status=0, si_utime=5, si_stime=20} ---
[pid   356] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   356] umount2("./2", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   356] openat(AT_FDCWD, "./2", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   356] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   356] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   356] umount2("./2/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   356] newfstatat(AT_FDCWD, "./2/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   356] unlink("./2/binderfs")      = 0
[   25.774974][  T418] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[   25.793731][  T418] ext4 filesystem being mounted at /root/syzkaller.RLArfL/2/bus supports timestamps until (%ptR?) (0x7fffffff)
[pid   356] umount2("./2/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   436] <... write resumed>)        = 20699119
[pid   436] munmap(0x7fb94d783000, 138412032) = 0
[pid   436] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   438] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   435] <... close resumed>)        = 0
[pid   435] mkdir("./bus", 0777)        = 0
[pid   435] mount("/dev/loop1", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   426] <... ioctl resumed>)        = 0
[pid   426] close(3 <unfinished ...>
[pid   438] <... write resumed>)        = 20699119
[pid   438] munmap(0x7fb94d783000, 138412032) = 0
[pid   438] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   436] <... openat resumed>)       = 4
[pid   436] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   426] <... close resumed>)        = 0
[pid   426] memfd_create("syzkaller", 0) = 3
[pid   426] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   426] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144) = 262144
[pid   426] munmap(0x7fb94d783000, 138412032) = 0
[pid   426] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4
[pid   426] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid   426] close(3)                    = 0
[pid   426] close(4 <unfinished ...>
[pid   438] <... openat resumed>)       = 4
[pid   438] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   356] <... umount2 resumed>)      = 0
[pid   356] umount2("./2/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   356] newfstatat(AT_FDCWD, "./2/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   356] umount2("./2/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   356] openat(AT_FDCWD, "./2/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid   438] <... ioctl resumed>)        = 0
[pid   438] close(3)                    = 0
[pid   438] close(4 <unfinished ...>
[pid   356] <... openat resumed>)       = 4
[pid   356] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   356] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   356] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   356] close(4)                    = 0
[pid   356] rmdir("./2/bus")            = 0
[pid   356] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   356] close(3)                    = 0
[pid   356] rmdir("./2")                = 0
[pid   356] mkdir("./3", 0777)          = 0
[pid   356] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   436] <... ioctl resumed>)        = 0
[pid   436] close(3)                    = 0
[   26.043925][  T435] F2FS-fs (loop1): invalid crc value
[pid   436] close(4 <unfinished ...>
[pid   426] <... close resumed>)        = 0
[pid   426] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[pid   426] mount("/dev/loop2", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   438] <... close resumed>)        = 0
[pid   356] <... openat resumed>)       = 3
[pid   438] mkdir("./bus", 0777 <unfinished ...>
[pid   356] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   438] <... mkdir resumed>)        = 0
[   26.073084][  T435] F2FS-fs (loop1): recover fsync data on readonly fs
[   26.080102][  T435] F2FS-fs (loop1): Cannot turn on quotas: -2 on 0
[   26.086667][  T435] F2FS-fs (loop1): checkpoint=disable on readonly fs
[pid   438] mount("/dev/loop4", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   436] <... close resumed>)        = 0
[pid   356] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid   436] mkdir("./bus", 0777 <unfinished ...>
[pid   356] close(3 <unfinished ...>
[pid   436] <... mkdir resumed>)        = 0
[pid   436] mount("/dev/loop3", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   426] <... mount resumed>)        = 0
[pid   426] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   426] chdir("./bus")              = 0
[pid   426] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   435] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   356] <... close resumed>)        = 0
[pid   356] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid   435] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3
[pid   435] ioctl(3, LOOP_CLR_FD)       = 0
[pid   435] close(3)                    = 0
[pid   356] <... clone resumed>, child_tidptr=0x55556caf1650) = 450
[pid   435] memfd_create("syzkaller", 0) = 3
[pid   435] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   435] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 <unfinished ...>
[pid   426] <... openat resumed>)       = 4
[pid   426] ioctl(4, LOOP_CLR_FD)       = 0
[pid   426] close(4)                    = 0
[pid   435] <... write resumed>)        = 262144
[pid   435] munmap(0x7fb94d783000, 138412032 <unfinished ...>
[pid   426] exit_group(0)               = ?
[pid   435] <... munmap resumed>)       = 0
[pid   435] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4
[pid   435] ioctl(4, LOOP_SET_FD, 3)    = -1 EBUSY (Device or resource busy)
[pid   426] +++ exited with 0 +++
[pid   358] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=426, si_uid=0, si_status=0, si_utime=4, si_stime=22} ---
[pid   358] restart_syscall(<... resuming interrupted clone ...>./strace-static-x86_64: Process 450 attached
 <unfinished ...>
[pid   450] set_robust_list(0x55556caf1660, 24 <unfinished ...>
[pid   435] ioctl(4, LOOP_CLR_FD)       = 0
[pid   435] ioctl(4, LOOP_SET_FD, 3)    = -1 EBUSY (Device or resource busy)
[pid   358] <... restart_syscall resumed>) = 0
[pid   358] umount2("./2", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   358] openat(AT_FDCWD, "./2", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   358] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   435] close(4 <unfinished ...>
[pid   358] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   358] umount2("./2/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   358] newfstatat(AT_FDCWD, "./2/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   435] <... close resumed>)        = 0
[pid   358] unlink("./2/binderfs")      = 0
[pid   358] umount2("./2/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   435] close(3)                    = 0
[pid   435] exit_group(0)               = ?
[pid   358] <... umount2 resumed>)      = 0
[pid   358] umount2("./2/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   358] newfstatat(AT_FDCWD, "./2/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   358] umount2("./2/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   435] +++ exited with 0 +++
[pid   358] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   358] openat(AT_FDCWD, "./2/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid   357] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=435, si_uid=0, si_status=0, si_utime=9, si_stime=18} ---
[pid   358] <... openat resumed>)       = 4
[pid   357] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid   358] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   358] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   358] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   358] close(4)                    = 0
[pid   358] rmdir("./2/bus")            = 0
[pid   358] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   358] close(3)                    = 0
[pid   358] rmdir("./2")                = 0
[pid   358] mkdir("./3", 0777)          = 0
[pid   358] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   357] <... restart_syscall resumed>) = 0
[pid   357] umount2("./2", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] openat(AT_FDCWD, "./2", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   357] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   357] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   357] umount2("./2/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] newfstatat(AT_FDCWD, "./2/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   357] unlink("./2/binderfs")      = 0
[pid   357] umount2("./2/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] newfstatat(AT_FDCWD, "./2/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   357] umount2("./2/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] openat(AT_FDCWD, "./2/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   357] newfstatat(4, "",  <unfinished ...>
[pid   450] <... set_robust_list resumed>) = 0
[pid   357] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   450] chdir("./3" <unfinished ...>
[pid   357] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   450] <... chdir resumed>)        = 0
[pid   357] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   450] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid   357] close(4 <unfinished ...>
[pid   450] <... prctl resumed>)        = 0
[pid   357] <... close resumed>)        = 0
[pid   450] setpgid(0, 0 <unfinished ...>
[pid   357] rmdir("./2/bus" <unfinished ...>
[pid   450] <... setpgid resumed>)      = 0
[pid   450] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid   357] <... rmdir resumed>)        = 0
[pid   357] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   450] <... openat resumed>)       = 3
[pid   357] close(3)                    = 0
[pid   450] write(3, "1000", 4 <unfinished ...>
[pid   357] rmdir("./2" <unfinished ...>
[pid   450] <... write resumed>)        = 4
[pid   450] close(3)                    = 0
[pid   450] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid   357] <... rmdir resumed>)        = 0
[pid   450] <... symlink resumed>)      = 0
[pid   357] mkdir("./3", 0777 <unfinished ...>
[pid   450] write(1, "executing program\n", 18executing program
 <unfinished ...>
[pid   357] <... mkdir resumed>)        = 0
[pid   450] <... write resumed>)        = 18
[pid   357] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   450] memfd_create("syzkaller", 0) = 3
[   26.156162][  T438] F2FS-fs (loop4): invalid crc value
[   26.163247][  T426] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue
[   26.172073][  T426] ext4 filesystem being mounted at /root/syzkaller.aDc6zi/2/bus supports timestamps until (%ptR?) (0x7fffffff)
[   26.195848][  T436] F2FS-fs (loop3): invalid crc value
[pid   450] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   357] <... openat resumed>)       = 3
[pid   358] <... openat resumed>)       = 3
[pid   357] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   357] close(3 <unfinished ...>
[pid   358] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   357] <... close resumed>)        = 0
[pid   358] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid   358] close(3)                    = 0
[pid   358] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55556caf1650) = 452
[pid   357] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55556caf1650) = 453
./strace-static-x86_64: Process 453 attached
[pid   453] set_robust_list(0x55556caf1660, 24) = 0
[pid   453] chdir("./3")                = 0
[pid   453] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   453] setpgid(0, 0)               = 0
[pid   453] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   453] write(3, "1000", 4)         = 4
[pid   453] close(3)                    = 0
[pid   453] symlink("/dev/binderfs", "./binderfs") = 0
[pid   453] write(1, "executing program\n", 18executing program
) = 18
[pid   453] memfd_create("syzkaller", 0) = 3
[pid   453] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
./strace-static-x86_64: Process 452 attached
[pid   452] set_robust_list(0x55556caf1660, 24) = 0
[pid   452] chdir("./3")                = 0
[pid   452] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   452] setpgid(0, 0)               = 0
[pid   452] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   452] write(3, "1000", 4)         = 4
[pid   452] close(3)                    = 0
[pid   452] symlink("/dev/binderfs", "./binderfs"executing program
) = 0
[pid   452] write(1, "executing program\n", 18) = 18
[pid   452] memfd_create("syzkaller", 0) = 3
[pid   452] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[   26.267981][  T438] F2FS-fs (loop4): recover fsync data on readonly fs
[   26.275279][  T438] F2FS-fs (loop4): Cannot turn on quotas: -2 on 0
[   26.308116][  T438] F2FS-fs (loop4): checkpoint=disable on readonly fs
[   26.348290][  T436] F2FS-fs (loop3): recover fsync data on readonly fs
[   26.375776][  T436] F2FS-fs (loop3): Cannot turn on quotas: -2 on 0
[   26.396008][  T436] F2FS-fs (loop3): checkpoint=disable on readonly fs
[pid   452] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   450] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   438] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   438] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3
[pid   438] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   453] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   450] <... write resumed>)        = 20699119
[pid   450] munmap(0x7fb94d783000, 138412032) = 0
[pid   453] <... write resumed>)        = 20699119
[pid   453] munmap(0x7fb94d783000, 138412032 <unfinished ...>
[pid   436] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   436] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3
[pid   436] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   453] <... munmap resumed>)       = 0
[pid   453] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   450] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   452] <... write resumed>)        = 20699119
[pid   452] munmap(0x7fb94d783000, 138412032) = 0
[pid   452] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   438] <... ioctl resumed>)        = 0
[pid   438] close(3 <unfinished ...>
[pid   453] <... openat resumed>)       = 4
[pid   450] <... openat resumed>)       = 4
[pid   453] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   450] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid   450] close(3)                    = 0
[pid   450] close(4 <unfinished ...>
[pid   436] <... ioctl resumed>)        = 0
[pid   436] close(3 <unfinished ...>
[pid   450] <... close resumed>)        = 0
[pid   453] <... ioctl resumed>)        = 0
[pid   436] <... close resumed>)        = 0
[pid   436] memfd_create("syzkaller", 0) = 3
[pid   436] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid   453] close(3 <unfinished ...>
[pid   436] <... mmap resumed>)         = 0x7fb94d783000
[pid   453] <... close resumed>)        = 0
[pid   453] close(4 <unfinished ...>
[pid   452] <... openat resumed>)       = 4
[pid   450] mkdir("./bus", 0777 <unfinished ...>
[pid   436] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 <unfinished ...>
[pid   452] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   450] <... mkdir resumed>)        = 0
[pid   436] <... write resumed>)        = 262144
[pid   436] munmap(0x7fb94d783000, 138412032) = 0
[pid   436] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   450] mount("/dev/loop0", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   453] <... close resumed>)        = 0
[pid   453] mkdir("./bus", 0777 <unfinished ...>
[pid   436] <... openat resumed>)       = 4
[pid   453] <... mkdir resumed>)        = 0
[pid   453] mount("/dev/loop1", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   436] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid   438] <... close resumed>)        = 0
[pid   436] close(3 <unfinished ...>
[pid   438] memfd_create("syzkaller", 0 <unfinished ...>
[pid   436] <... close resumed>)        = 0
[pid   436] close(4 <unfinished ...>
[pid   438] <... memfd_create resumed>) = 3
[pid   438] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   438] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144) = 262144
[pid   438] munmap(0x7fb94d783000, 138412032) = 0
[pid   438] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   452] <... ioctl resumed>)        = 0
[pid   452] close(3)                    = 0
[   26.772718][  T453] F2FS-fs (loop1): invalid crc value
[   26.777502][  T450] F2FS-fs (loop0): invalid crc value
[pid   452] close(4 <unfinished ...>
[pid   436] <... close resumed>)        = 0
[pid   436] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[pid   436] mount("/dev/loop3", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   438] <... openat resumed>)       = 4
[   26.816580][  T453] F2FS-fs (loop1): recover fsync data on readonly fs
[   26.824847][  T453] F2FS-fs (loop1): Cannot turn on quotas: -2 on 0
[   26.828273][  T450] F2FS-fs (loop0): recover fsync data on readonly fs
[   26.832432][  T453] F2FS-fs (loop1): checkpoint=disable on readonly fs
[   26.838189][  T450] F2FS-fs (loop0): Cannot turn on quotas: -2 on 0
[   26.845963][  T436] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[   26.851144][  T450] F2FS-fs (loop0): checkpoint=disable on readonly fs
[pid   438] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   452] <... close resumed>)        = 0
[pid   452] mkdir("./bus", 0777)        = 0
[pid   452] mount("/dev/loop2", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   436] <... mount resumed>)        = 0
[pid   436] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   436] chdir("./bus")              = 0
[pid   436] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   438] <... ioctl resumed>)        = 0
[pid   436] <... openat resumed>)       = 4
[pid   438] close(3)                    = 0
[pid   438] close(4 <unfinished ...>
[pid   436] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid   438] <... close resumed>)        = 0
[pid   438] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[pid   438] mount("/dev/loop4", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   436] <... ioctl resumed>)        = 0
[pid   436] close(4)                    = 0
[pid   436] exit_group(0)               = ?
[pid   436] +++ exited with 0 +++
[pid   359] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=436, si_uid=0, si_status=0, si_utime=6, si_stime=28} ---
[pid   359] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   359] umount2("./2", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   359] openat(AT_FDCWD, "./2", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   359] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   359] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   359] umount2("./2/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   359] newfstatat(AT_FDCWD, "./2/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   359] unlink("./2/binderfs")      = 0
[   26.876731][  T436] ext4 filesystem being mounted at /root/syzkaller.P1RtK2/2/bus supports timestamps until (%ptR?) (0x7fffffff)
[   26.910833][  T452] F2FS-fs (loop2): invalid crc value
[pid   359] umount2("./2/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   438] <... mount resumed>)        = 0
[pid   438] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   438] chdir("./bus")              = 0
[pid   438] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   359] <... umount2 resumed>)      = 0
[pid   359] umount2("./2/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   359] newfstatat(AT_FDCWD, "./2/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   359] umount2("./2/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   359] openat(AT_FDCWD, "./2/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   359] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   359] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   359] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   359] close(4)                    = 0
[pid   359] rmdir("./2/bus")            = 0
[pid   359] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   359] close(3 <unfinished ...>
[pid   450] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   450] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   450] ioctl(3, LOOP_CLR_FD)       = 0
[pid   450] close(3)                    = 0
[pid   450] memfd_create("syzkaller", 0) = 3
[pid   450] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   450] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 <unfinished ...>
[pid   359] <... close resumed>)        = 0
[pid   359] rmdir("./2")                = 0
[pid   450] <... write resumed>)        = 262144
[pid   359] mkdir("./3", 0777)          = 0
[pid   359] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   450] munmap(0x7fb94d783000, 138412032) = 0
[pid   450] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   453] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   359] <... openat resumed>)       = 3
[pid   453] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3
[pid   453] ioctl(3, LOOP_CLR_FD)       = 0
[pid   359] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   453] close(3)                    = 0
[pid   359] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid   453] memfd_create("syzkaller", 0) = 3
[pid   359] close(3 <unfinished ...>
[pid   453] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   359] <... close resumed>)        = 0
[pid   453] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 <unfinished ...>
[pid   359] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid   453] <... write resumed>)        = 262144
[pid   450] <... openat resumed>)       = 4
[pid   453] munmap(0x7fb94d783000, 138412032 <unfinished ...>
[pid   450] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   359] <... clone resumed>, child_tidptr=0x55556caf1650) = 471
[pid   453] <... munmap resumed>)       = 0
[pid   453] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4
[pid   450] <... ioctl resumed>)        = 0
[pid   450] close(3)                    = 0
[pid   450] close(4 <unfinished ...>
[pid   453] ioctl(4, LOOP_SET_FD, 3./strace-static-x86_64: Process 471 attached
 <unfinished ...>
[   26.952764][  T452] F2FS-fs (loop2): recover fsync data on readonly fs
[   26.961137][  T438] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
[   26.972232][  T452] F2FS-fs (loop2): Cannot turn on quotas: -2 on 0
[   26.972291][  T438] ext4 filesystem being mounted at /root/syzkaller.iU8IiS/2/bus supports timestamps until (%ptR?) (0x7fffffff)
[   26.979249][  T452] F2FS-fs (loop2): checkpoint=disable on readonly fs
[pid   471] set_robust_list(0x55556caf1660, 24) = 0
[pid   471] chdir("./3")                = 0
[pid   471] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   471] setpgid(0, 0)               = 0
[pid   471] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   471] write(3, "1000", 4)         = 4
[pid   471] close(3)                    = 0
[pid   471] symlink("/dev/binderfs", "./binderfs") = 0
[pid   471] write(1, "executing program\n", 18executing program
) = 18
[pid   471] memfd_create("syzkaller", 0) = 3
[pid   471] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   450] <... close resumed>)        = 0
[pid   450] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[pid   450] mount("/dev/loop0", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   471] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   453] <... ioctl resumed>)        = -1 EBUSY (Device or resource busy)
[pid   438] <... openat resumed>)       = 4
[pid   453] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid   438] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid   450] <... mount resumed>)        = 0
[pid   450] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   450] chdir("./bus")              = 0
[   27.129079][  T450] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[   27.138316][  T450] ext4 filesystem being mounted at /root/syzkaller.RLArfL/3/bus supports timestamps until (%ptR?) (0x7fffffff)
[pid   450] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   471] <... write resumed>)        = 20699119
[pid   452] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   450] <... openat resumed>)       = 4
[pid   438] <... ioctl resumed>)        = 0
[pid   452] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   438] close(4 <unfinished ...>
[pid   471] munmap(0x7fb94d783000, 138412032 <unfinished ...>
[pid   452] <... openat resumed>)       = 3
[pid   450] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid   438] <... close resumed>)        = 0
[pid   452] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   438] exit_group(0 <unfinished ...>
[pid   452] <... ioctl resumed>)        = 0
[pid   438] <... exit_group resumed>)   = ?
[pid   452] close(3 <unfinished ...>
[pid   438] +++ exited with 0 +++
[pid   452] <... close resumed>)        = 0
[pid   471] <... munmap resumed>)       = 0
[pid   452] memfd_create("syzkaller", 0 <unfinished ...>
[pid   450] <... ioctl resumed>)        = 0
[pid   360] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=438, si_uid=0, si_status=0, si_utime=4, si_stime=27} ---
[pid   471] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   452] <... memfd_create resumed>) = 3
[pid   450] close(4 <unfinished ...>
[pid   452] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   471] <... openat resumed>)       = 4
[pid   452] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 <unfinished ...>
[pid   450] <... close resumed>)        = 0
[pid   471] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   452] <... write resumed>)        = 262144
[pid   450] exit_group(0 <unfinished ...>
[pid   360] umount2("./2", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   452] munmap(0x7fb94d783000, 138412032) = 0
[pid   450] <... exit_group resumed>)   = ?
[pid   360] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   452] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   450] +++ exited with 0 +++
[pid   360] openat(AT_FDCWD, "./2", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   471] <... ioctl resumed>)        = 0
[pid   360] newfstatat(3, "",  <unfinished ...>
[pid   356] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=450, si_uid=0, si_status=0, si_utime=4, si_stime=21} ---
[pid   360] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   360] getdents64(3,  <unfinished ...>
[pid   471] close(3 <unfinished ...>
[pid   360] <... getdents64 resumed>0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   356] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid   360] umount2("./2/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   360] newfstatat(AT_FDCWD, "./2/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   360] unlink("./2/binderfs" <unfinished ...>
[pid   471] <... close resumed>)        = 0
[pid   356] <... restart_syscall resumed>) = 0
[pid   452] <... openat resumed>)       = 4
[pid   452] ioctl(4, LOOP_SET_FD, 3)    = -1 EBUSY (Device or resource busy)
[pid   452] ioctl(4, LOOP_CLR_FD)       = 0
[pid   471] close(4 <unfinished ...>
[pid   452] ioctl(4, LOOP_SET_FD, 3)    = -1 EBUSY (Device or resource busy)
[pid   452] close(4)                    = 0
[pid   452] close(3 <unfinished ...>
[pid   471] <... close resumed>)        = 0
[pid   452] <... close resumed>)        = 0
[pid   471] mkdir("./bus", 0777 <unfinished ...>
[pid   356] umount2("./3", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   452] exit_group(0)               = ?
[pid   452] +++ exited with 0 +++
[pid   356] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   358] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=452, si_uid=0, si_status=0, si_utime=9, si_stime=18} ---
[pid   356] openat(AT_FDCWD, "./3", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid   358] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid   356] <... openat resumed>)       = 3
[pid   356] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   356] getdents64(3,  <unfinished ...>
[pid   358] <... restart_syscall resumed>) = 0
[pid   358] umount2("./3", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   358] openat(AT_FDCWD, "./3", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   358] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   358] getdents64(3,  <unfinished ...>
[pid   471] <... mkdir resumed>)        = 0
[pid   360] <... unlink resumed>)       = 0
[pid   358] <... getdents64 resumed>0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   356] <... getdents64 resumed>0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   471] mount("/dev/loop3", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   360] umount2("./2/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   358] umount2("./3/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   356] umount2("./3/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   358] newfstatat(AT_FDCWD, "./3/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   358] unlink("./3/binderfs")      = 0
[pid   356] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   358] umount2("./3/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   356] newfstatat(AT_FDCWD, "./3/binderfs",  <unfinished ...>
[pid   358] newfstatat(AT_FDCWD, "./3/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   358] umount2("./3/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   358] openat(AT_FDCWD, "./3/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   358] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   358] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   356] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   358] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   358] close(4)                    = 0
[pid   358] rmdir("./3/bus")            = 0
[pid   356] unlink("./3/binderfs" <unfinished ...>
[pid   358] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   356] <... unlink resumed>)       = 0
[pid   358] close(3)                    = 0
[pid   356] umount2("./3/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   358] rmdir("./3")                = 0
[pid   358] mkdir("./4", 0777)          = 0
[pid   358] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   360] <... umount2 resumed>)      = 0
[pid   358] <... openat resumed>)       = 3
[pid   360] umount2("./2/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   358] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   356] <... umount2 resumed>)      = 0
[pid   360] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   356] umount2("./3/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   360] newfstatat(AT_FDCWD, "./2/bus",  <unfinished ...>
[pid   356] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   360] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   356] newfstatat(AT_FDCWD, "./3/bus",  <unfinished ...>
[pid   360] umount2("./2/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   356] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   360] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   356] umount2("./3/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   360] openat(AT_FDCWD, "./2/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid   356] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   360] <... openat resumed>)       = 4
[pid   356] openat(AT_FDCWD, "./3/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid   360] newfstatat(4, "",  <unfinished ...>
[pid   356] <... openat resumed>)       = 4
[pid   360] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   356] newfstatat(4, "",  <unfinished ...>
[pid   360] getdents64(4,  <unfinished ...>
[pid   356] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   360] <... getdents64 resumed>0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   356] getdents64(4,  <unfinished ...>
[pid   360] getdents64(4,  <unfinished ...>
[pid   356] <... getdents64 resumed>0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   360] <... getdents64 resumed>0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   356] getdents64(4,  <unfinished ...>
[pid   360] close(4 <unfinished ...>
[pid   356] <... getdents64 resumed>0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   360] <... close resumed>)        = 0
[pid   356] close(4 <unfinished ...>
[pid   360] rmdir("./2/bus" <unfinished ...>
[pid   356] <... close resumed>)        = 0
[pid   356] rmdir("./3/bus" <unfinished ...>
[pid   360] <... rmdir resumed>)        = 0
[pid   356] <... rmdir resumed>)        = 0
[pid   360] getdents64(3,  <unfinished ...>
[pid   356] getdents64(3,  <unfinished ...>
[pid   360] <... getdents64 resumed>0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   356] <... getdents64 resumed>0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   360] close(3 <unfinished ...>
[pid   356] close(3 <unfinished ...>
[pid   360] <... close resumed>)        = 0
[pid   356] <... close resumed>)        = 0
[pid   360] rmdir("./2" <unfinished ...>
[pid   356] rmdir("./3" <unfinished ...>
[pid   360] <... rmdir resumed>)        = 0
[pid   356] <... rmdir resumed>)        = 0
[pid   360] mkdir("./3", 0777 <unfinished ...>
[pid   356] mkdir("./4", 0777 <unfinished ...>
[pid   360] <... mkdir resumed>)        = 0
[pid   356] <... mkdir resumed>)        = 0
[pid   360] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   356] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   453] <... ioctl resumed>)        = 0
[   27.249857][  T471] F2FS-fs (loop3): invalid crc value
[pid   453] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   360] <... openat resumed>)       = 3
[pid   358] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid   356] <... openat resumed>)       = 3
[pid   356] ioctl(3, LOOP_CLR_FD)       = 0
[pid   356] close(3)                    = 0
[pid   356] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55556caf1650) = 477
[pid   360] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   358] close(3./strace-static-x86_64: Process 477 attached
 <unfinished ...>
[pid   477] set_robust_list(0x55556caf1660, 24) = 0
[pid   477] chdir("./4")                = 0
[pid   477] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   477] setpgid(0, 0)               = 0
[pid   477] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   477] write(3, "1000", 4)         = 4
[pid   477] close(3)                    = 0
[pid   477] symlink("/dev/binderfs", "./binderfs"executing program
) = 0
[pid   477] write(1, "executing program\n", 18) = 18
[pid   477] memfd_create("syzkaller", 0) = 3
[pid   477] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   453] <... ioctl resumed>)        = 0
[pid   358] <... close resumed>)        = 0
[pid   360] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid   360] close(3 <unfinished ...>
[pid   358] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid   453] close(3 <unfinished ...>
[pid   360] <... close resumed>)        = 0
[pid   453] <... close resumed>)        = 0
[pid   360] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid   358] <... clone resumed>, child_tidptr=0x55556caf1650) = 479
./strace-static-x86_64: Process 479 attached
[pid   479] set_robust_list(0x55556caf1660, 24) = 0
[pid   479] chdir("./4")                = 0
[pid   479] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   479] setpgid(0, 0)               = 0
[pid   479] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   479] write(3, "1000", 4 <unfinished ...>
[pid   453] close(4 <unfinished ...>
[pid   360] <... clone resumed>, child_tidptr=0x55556caf1650) = 480
[pid   479] <... write resumed>)        = 4
[pid   479] close(3)                    = 0
[pid   479] symlink("/dev/binderfs", "./binderfs") = 0
[pid   479] write(1, "executing program\n", 18executing program
) = 18
[pid   479] memfd_create("syzkaller", 0) = 3
[pid   479] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
./strace-static-x86_64: Process 480 attached
[pid   480] set_robust_list(0x55556caf1660, 24) = 0
[pid   480] chdir("./3")                = 0
[pid   480] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   480] setpgid(0, 0)               = 0
[pid   480] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   480] write(3, "1000", 4)         = 4
[pid   480] close(3)                    = 0
[pid   480] symlink("/dev/binderfs", "./binderfs") = 0
[pid   480] write(1, "executing program\n", 18executing program
) = 18
[pid   480] memfd_create("syzkaller", 0) = 3
[pid   480] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[   27.311552][  T471] F2FS-fs (loop3): recover fsync data on readonly fs
[   27.318661][  T471] F2FS-fs (loop3): Cannot turn on quotas: -2 on 0
[   27.325167][  T471] F2FS-fs (loop3): checkpoint=disable on readonly fs
[pid   453] <... close resumed>)        = 0
[pid   453] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[pid   453] mount("/dev/loop1", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue") = 0
[pid   453] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   453] chdir("./bus")              = 0
[pid   453] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4
[pid   453] ioctl(4, LOOP_CLR_FD)       = 0
[pid   453] close(4)                    = 0
[pid   453] exit_group(0)               = ?
[pid   453] +++ exited with 0 +++
[pid   357] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=453, si_uid=0, si_status=0, si_utime=5, si_stime=32} ---
[pid   357] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   357] umount2("./3", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] openat(AT_FDCWD, "./3", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   357] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   357] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   357] umount2("./3/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] newfstatat(AT_FDCWD, "./3/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   357] unlink("./3/binderfs")      = 0
[   27.418229][  T453] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue
[   27.439096][  T453] ext4 filesystem being mounted at /root/syzkaller.c2lmo2/3/bus supports timestamps until (%ptR?) (0x7fffffff)
[pid   357] umount2("./3/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   477] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   471] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   471] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   479] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   480] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   471] <... openat resumed>)       = 3
[pid   357] <... umount2 resumed>)      = 0
[pid   357] umount2("./3/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] newfstatat(AT_FDCWD, "./3/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   357] umount2("./3/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] openat(AT_FDCWD, "./3/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   357] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   357] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   357] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   357] close(4)                    = 0
[pid   357] rmdir("./3/bus" <unfinished ...>
[pid   471] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   357] <... rmdir resumed>)        = 0
[pid   357] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   357] close(3)                    = 0
[pid   357] rmdir("./3")                = 0
[pid   357] mkdir("./4", 0777)          = 0
[pid   357] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   477] <... write resumed>)        = 20699119
[pid   477] munmap(0x7fb94d783000, 138412032) = 0
[pid   477] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid   357] <... openat resumed>)       = 3
[pid   477] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   357] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   477] <... ioctl resumed>)        = 0
[pid   357] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid   357] close(3 <unfinished ...>
[pid   477] close(3 <unfinished ...>
[pid   357] <... close resumed>)        = 0
[pid   477] <... close resumed>)        = 0
[pid   357] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid   477] close(4)                    = 0
[pid   477] mkdir("./bus", 0777)        = 0
[pid   357] <... clone resumed>, child_tidptr=0x55556caf1650) = 484
[pid   477] mount("/dev/loop0", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"..../strace-static-x86_64: Process 484 attached
 <unfinished ...>
[pid   484] set_robust_list(0x55556caf1660, 24) = 0
[pid   484] chdir("./4")                = 0
[pid   484] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   484] setpgid(0, 0)               = 0
[pid   484] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   484] write(3, "1000", 4)         = 4
[pid   484] close(3)                    = 0
[pid   484] symlink("/dev/binderfs", "./binderfs") = 0
[pid   484] write(1, "executing program\n", 18executing program
) = 18
[pid   484] memfd_create("syzkaller", 0) = 3
[pid   484] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[   27.638631][  T477] F2FS-fs (loop0): invalid crc value
[   27.699234][  T477] F2FS-fs (loop0): recover fsync data on readonly fs
[   27.705893][  T477] F2FS-fs (loop0): Cannot turn on quotas: -2 on 0
[   27.713668][  T477] F2FS-fs (loop0): checkpoint=disable on readonly fs
[pid   479] <... write resumed>)        = 20699119
[pid   479] munmap(0x7fb94d783000, 138412032) = 0
[pid   479] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4
[pid   479] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid   479] close(3)                    = 0
[pid   479] close(4)                    = 0
[pid   479] mkdir("./bus", 0777)        = 0
[pid   479] mount("/dev/loop2", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   471] <... ioctl resumed>)        = 0
[pid   471] close(3 <unfinished ...>
[pid   480] <... write resumed>)        = 20699119
[pid   480] munmap(0x7fb94d783000, 138412032) = 0
[pid   480] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4
[pid   480] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid   480] close(3)                    = 0
[pid   480] close(4)                    = 0
[pid   480] mkdir("./bus", 0777 <unfinished ...>
[pid   471] <... close resumed>)        = 0
[pid   471] memfd_create("syzkaller", 0) = 3
[pid   480] <... mkdir resumed>)        = 0
[pid   480] mount("/dev/loop4", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   471] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   471] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144) = 262144
[pid   471] munmap(0x7fb94d783000, 138412032) = 0
[pid   471] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4
[   27.783267][  T479] F2FS-fs (loop2): invalid crc value
[pid   471] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid   471] close(3)                    = 0
[   27.822116][  T480] F2FS-fs (loop4): invalid crc value
[pid   471] close(4 <unfinished ...>
[pid   484] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   477] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[   27.869113][  T479] F2FS-fs (loop2): recover fsync data on readonly fs
[   27.876258][  T479] F2FS-fs (loop2): Cannot turn on quotas: -2 on 0
[   27.883218][  T479] F2FS-fs (loop2): checkpoint=disable on readonly fs
[pid   477] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   471] <... close resumed>)        = 0
[pid   477] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   471] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[pid   471] mount("/dev/loop3", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   484] <... write resumed>)        = 20699119
[pid   484] munmap(0x7fb94d783000, 138412032) = 0
[   27.913983][  T480] F2FS-fs (loop4): recover fsync data on readonly fs
[   27.931608][  T480] F2FS-fs (loop4): Cannot turn on quotas: -2 on 0
[   27.939691][  T480] F2FS-fs (loop4): checkpoint=disable on readonly fs
[pid   484] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4
[pid   484] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid   484] close(3)                    = 0
[pid   484] close(4)                    = 0
[pid   484] mkdir("./bus", 0777)        = 0
[pid   484] mount("/dev/loop1", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   471] <... mount resumed>)        = 0
[pid   471] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   471] chdir("./bus")              = 0
[pid   471] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   479] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   471] <... openat resumed>)       = 4
[pid   471] ioctl(4, LOOP_CLR_FD)       = 0
[pid   471] close(4 <unfinished ...>
[pid   479] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   471] <... close resumed>)        = 0
[pid   479] <... openat resumed>)       = 3
[pid   479] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   471] exit_group(0)               = ?
[pid   471] +++ exited with 0 +++
[pid   359] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=471, si_uid=0, si_status=0, si_utime=5, si_stime=20} ---
[pid   359] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   359] umount2("./3", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   359] openat(AT_FDCWD, "./3", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   359] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   359] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   359] umount2("./3/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   359] newfstatat(AT_FDCWD, "./3/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   359] unlink("./3/binderfs")      = 0
[pid   477] <... ioctl resumed>)        = 0
[pid   359] umount2("./3/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[   28.012706][  T471] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[   28.026683][  T484] F2FS-fs (loop1): invalid crc value
[   28.032154][  T471] ext4 filesystem being mounted at /root/syzkaller.P1RtK2/3/bus supports timestamps until (%ptR?) (0x7fffffff)
[pid   477] close(3 <unfinished ...>
[pid   480] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   477] <... close resumed>)        = 0
[pid   480] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   359] <... umount2 resumed>)      = 0
[pid   480] <... openat resumed>)       = 3
[pid   359] umount2("./3/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   480] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   359] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   359] newfstatat(AT_FDCWD, "./3/bus",  <unfinished ...>
[pid   477] memfd_create("syzkaller", 0 <unfinished ...>
[pid   359] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   477] <... memfd_create resumed>) = 3
[pid   359] umount2("./3/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   477] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid   359] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   477] <... mmap resumed>)         = 0x7fb94d783000
[pid   359] openat(AT_FDCWD, "./3/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   359] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   359] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   359] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   359] close(4 <unfinished ...>
[pid   477] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 <unfinished ...>
[pid   359] <... close resumed>)        = 0
[pid   359] rmdir("./3/bus")            = 0
[pid   477] <... write resumed>)        = 262144
[pid   477] munmap(0x7fb94d783000, 138412032 <unfinished ...>
[pid   359] getdents64(3,  <unfinished ...>
[pid   477] <... munmap resumed>)       = 0
[pid   359] <... getdents64 resumed>0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   477] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   359] close(3)                    = 0
[pid   359] rmdir("./3")                = 0
[pid   359] mkdir("./4", 0777)          = 0
[   28.090691][  T484] F2FS-fs (loop1): recover fsync data on readonly fs
[   28.097747][  T484] F2FS-fs (loop1): Cannot turn on quotas: -2 on 0
[   28.105631][  T484] F2FS-fs (loop1): checkpoint=disable on readonly fs
[pid   359] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   477] <... openat resumed>)       = 4
[pid   477] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   479] <... ioctl resumed>)        = 0
[pid   479] close(3 <unfinished ...>
[pid   477] <... ioctl resumed>)        = 0
[pid   480] <... ioctl resumed>)        = 0
[pid   477] close(3)                    = 0
[pid   477] close(4 <unfinished ...>
[pid   480] close(3 <unfinished ...>
[pid   477] <... close resumed>)        = 0
[pid   359] <... openat resumed>)       = 3
[pid   359] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   359] close(3)                    = 0
[pid   359] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid   477] mkdir("./bus", 0777 <unfinished ...>
[pid   359] <... clone resumed>, child_tidptr=0x55556caf1650) = 497
[pid   477] <... mkdir resumed>)        = -1 EEXIST (File exists)
./strace-static-x86_64: Process 497 attached
[pid   480] <... close resumed>)        = 0
[pid   477] mount("/dev/loop0", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   480] memfd_create("syzkaller", 0 <unfinished ...>
[pid   497] set_robust_list(0x55556caf1660, 24) = 0
[pid   480] <... memfd_create resumed>) = 3
[pid   480] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   497] chdir("./4" <unfinished ...>
[pid   480] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144) = 262144
[pid   497] <... chdir resumed>)        = 0
[pid   497] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid   480] munmap(0x7fb94d783000, 138412032 <unfinished ...>
[pid   497] <... prctl resumed>)        = 0
[pid   480] <... munmap resumed>)       = 0
[pid   480] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   497] setpgid(0, 0)               = 0
[pid   497] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   497] write(3, "1000", 4)         = 4
[pid   497] close(3)                    = 0
[pid   497] symlink("/dev/binderfs", "./binderfs") = 0
[pid   497] write(1, "executing program\n", 18executing program
) = 18
[pid   497] memfd_create("syzkaller", 0) = 3
[pid   497] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   480] <... openat resumed>)       = 4
[pid   479] <... close resumed>)        = 0
[pid   480] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   479] memfd_create("syzkaller", 0) = 3
[pid   479] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   479] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144) = 262144
[pid   479] munmap(0x7fb94d783000, 138412032) = 0
[pid   479] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   484] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   484] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   477] <... mount resumed>)        = 0
[pid   480] <... ioctl resumed>)        = 0
[pid   479] <... openat resumed>)       = 4
[pid   484] <... openat resumed>)       = 3
[pid   480] close(3 <unfinished ...>
[pid   479] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   477] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid   484] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   480] <... close resumed>)        = 0
[pid   477] <... openat resumed>)       = 3
[pid   480] close(4 <unfinished ...>
[pid   477] chdir("./bus")              = 0
[pid   477] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[   28.254495][  T477] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[   28.263532][  T477] ext4 filesystem being mounted at /root/syzkaller.RLArfL/4/bus supports timestamps until (%ptR?) (0x7fffffff)
[pid   497] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   480] <... close resumed>)        = 0
[pid   479] <... ioctl resumed>)        = 0
[pid   480] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[pid   480] mount("/dev/loop4", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   479] close(3)                    = 0
[pid   479] close(4 <unfinished ...>
[pid   497] <... write resumed>)        = 20699119
[pid   497] munmap(0x7fb94d783000, 138412032) = 0
[pid   497] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   484] <... ioctl resumed>)        = 0
[pid   484] close(3 <unfinished ...>
[pid   479] <... close resumed>)        = 0
[pid   497] <... openat resumed>)       = 4
[pid   497] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid   497] close(3)                    = 0
[pid   497] close(4 <unfinished ...>
[pid   479] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[pid   479] mount("/dev/loop2", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   480] <... mount resumed>)        = 0
[pid   480] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   480] chdir("./bus")              = 0
[pid   480] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   477] <... openat resumed>)       = 4
[pid   497] <... close resumed>)        = 0
[pid   477] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid   497] mkdir("./bus", 0777)        = 0
[   28.418999][  T480] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
[   28.427816][  T480] ext4 filesystem being mounted at /root/syzkaller.iU8IiS/3/bus supports timestamps until (%ptR?) (0x7fffffff)
[pid   497] mount("/dev/loop3", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   480] <... openat resumed>)       = 4
[pid   480] ioctl(4, LOOP_CLR_FD)       = 0
[pid   480] close(4)                    = 0
[pid   480] exit_group(0)               = ?
[pid   480] +++ exited with 0 +++
[pid   360] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=480, si_uid=0, si_status=0, si_utime=4, si_stime=25} ---
[pid   360] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid   477] <... ioctl resumed>)        = 0
[pid   477] close(4 <unfinished ...>
[pid   360] <... restart_syscall resumed>) = 0
[pid   477] <... close resumed>)        = 0
[pid   477] exit_group(0)               = ?
[pid   360] umount2("./3", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   477] +++ exited with 0 +++
[pid   360] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   360] openat(AT_FDCWD, "./3", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   356] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=477, si_uid=0, si_status=0, si_utime=4, si_stime=29} ---
[pid   360] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   360] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   360] umount2("./3/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   360] newfstatat(AT_FDCWD, "./3/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   356] umount2("./4", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   360] unlink("./3/binderfs")      = 0
[pid   356] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   360] umount2("./3/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   356] openat(AT_FDCWD, "./4", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid   360] umount2("./3/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   356] <... openat resumed>)       = 3
[pid   360] newfstatat(AT_FDCWD, "./3/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   356] newfstatat(3, "",  <unfinished ...>
[pid   360] umount2("./3/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   356] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   360] openat(AT_FDCWD, "./3/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   356] getdents64(3,  <unfinished ...>
[pid   360] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   356] <... getdents64 resumed>0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   360] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   356] umount2("./4/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   360] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   356] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   360] close(4 <unfinished ...>
[pid   356] newfstatat(AT_FDCWD, "./4/binderfs",  <unfinished ...>
[pid   360] <... close resumed>)        = 0
[pid   360] rmdir("./3/bus" <unfinished ...>
[pid   356] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   360] <... rmdir resumed>)        = 0
[pid   360] getdents64(3,  <unfinished ...>
[pid   356] unlink("./4/binderfs" <unfinished ...>
[pid   360] <... getdents64 resumed>0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   360] close(3 <unfinished ...>
[pid   356] <... unlink resumed>)       = 0
[pid   360] <... close resumed>)        = 0
[pid   360] rmdir("./3" <unfinished ...>
[pid   356] umount2("./4/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   360] <... rmdir resumed>)        = 0
[pid   360] mkdir("./4", 0777)          = 0
[pid   360] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   479] <... mount resumed>)        = 0
[pid   479] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   479] chdir("./bus")              = 0
[   28.548533][  T479] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue
[   28.549966][  T497] F2FS-fs (loop3): invalid crc value
[   28.557854][  T479] ext4 filesystem being mounted at /root/syzkaller.aDc6zi/4/bus supports timestamps until (%ptR?) (0x7fffffff)
[   28.590606][  T497] F2FS-fs (loop3): recover fsync data on readonly fs
[pid   479] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   484] <... close resumed>)        = 0
[pid   360] <... openat resumed>)       = 3
[pid   360] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   484] memfd_create("syzkaller", 0 <unfinished ...>
[pid   360] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid   484] <... memfd_create resumed>) = 3
[pid   360] close(3 <unfinished ...>
[pid   484] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   360] <... close resumed>)        = 0
[pid   360] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55556caf1650) = 508
[pid   484] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144) = 262144
[pid   356] <... umount2 resumed>)      = 0
[pid   484] munmap(0x7fb94d783000, 138412032 <unfinished ...>
[pid   356] umount2("./4/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   484] <... munmap resumed>)       = 0
[pid   356] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   484] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   356] newfstatat(AT_FDCWD, "./4/bus", ./strace-static-x86_64: Process 508 attached
 <unfinished ...>
[pid   484] <... openat resumed>)       = 4
[pid   356] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   484] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   356] umount2("./4/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   508] set_robust_list(0x55556caf1660, 24 <unfinished ...>
[pid   356] openat(AT_FDCWD, "./4/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid   508] <... set_robust_list resumed>) = 0
[pid   356] <... openat resumed>)       = 4
[pid   508] chdir("./4" <unfinished ...>
[pid   356] newfstatat(4, "",  <unfinished ...>
[pid   508] <... chdir resumed>)        = 0
[pid   356] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   508] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid   356] getdents64(4,  <unfinished ...>
[pid   508] <... prctl resumed>)        = 0
[pid   356] <... getdents64 resumed>0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   508] setpgid(0, 0 <unfinished ...>
[pid   356] getdents64(4,  <unfinished ...>
[pid   508] <... setpgid resumed>)      = 0
[pid   356] <... getdents64 resumed>0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   508] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid   356] close(4 <unfinished ...>
[pid   508] <... openat resumed>)       = 3
[pid   356] <... close resumed>)        = 0
[pid   508] write(3, "1000", 4 <unfinished ...>
[pid   356] rmdir("./4/bus" <unfinished ...>
[pid   508] <... write resumed>)        = 4
[pid   356] <... rmdir resumed>)        = 0
[pid   356] getdents64(3,  <unfinished ...>
[pid   508] close(3 <unfinished ...>
[pid   356] <... getdents64 resumed>0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   508] <... close resumed>)        = 0
[pid   356] close(3 <unfinished ...>
[pid   508] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid   356] <... close resumed>)        = 0
[pid   508] <... symlink resumed>)      = 0
[pid   356] rmdir("./4"executing program
 <unfinished ...>
[pid   479] <... openat resumed>)       = 4
[pid   508] write(1, "executing program\n", 18 <unfinished ...>
[pid   356] <... rmdir resumed>)        = 0
[pid   508] <... write resumed>)        = 18
[pid   356] mkdir("./5", 0777)          = 0
[pid   356] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   508] memfd_create("syzkaller", 0) = 3
[pid   508] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   479] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid   484] <... ioctl resumed>)        = 0
[pid   356] <... openat resumed>)       = 3
[pid   484] close(3)                    = 0
[pid   484] close(4)                    = 0
[pid   356] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   484] mkdir("./bus", 0777 <unfinished ...>
[pid   356] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid   484] <... mkdir resumed>)        = -1 EEXIST (File exists)
[pid   356] close(3 <unfinished ...>
[pid   484] mount("/dev/loop1", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   356] <... close resumed>)        = 0
[pid   356] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55556caf1650) = 510
[pid   479] <... ioctl resumed>)        = 0
[pid   479] close(4)                    = 0
[pid   479] exit_group(0)               = ?
[pid   479] +++ exited with 0 +++
[pid   358] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=479, si_uid=0, si_status=0, si_utime=5, si_stime=33} ---
[pid   358] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   358] umount2("./4", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   358] openat(AT_FDCWD, "./4", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   358] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   358] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   358] umount2("./4/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   358] newfstatat(AT_FDCWD, "./4/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   358] unlink("./4/binderfs")      = 0
[   28.597238][  T497] F2FS-fs (loop3): Cannot turn on quotas: -2 on 0
[   28.604105][  T497] F2FS-fs (loop3): checkpoint=disable on readonly fs
[pid   358] umount2("./4/bus", MNT_FORCE|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 510 attached
 <unfinished ...>
[pid   510] set_robust_list(0x55556caf1660, 24) = 0
[pid   510] chdir("./5")                = 0
[pid   510] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   510] setpgid(0, 0)               = 0
[pid   510] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   510] write(3, "1000", 4)         = 4
[pid   510] close(3)                    = 0
[pid   510] symlink("/dev/binderfs", "./binderfs"executing program
) = 0
[pid   510] write(1, "executing program\n", 18) = 18
[pid   510] memfd_create("syzkaller", 0 <unfinished ...>
[pid   358] <... umount2 resumed>)      = 0
[pid   510] <... memfd_create resumed>) = 3
[pid   358] umount2("./4/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   510] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   358] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   484] <... mount resumed>)        = 0
[pid   484] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   484] chdir("./bus")              = 0
[pid   484] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   358] newfstatat(AT_FDCWD, "./4/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   358] umount2("./4/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   358] openat(AT_FDCWD, "./4/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   358] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   358] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   358] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   358] close(4)                    = 0
[pid   358] rmdir("./4/bus")            = 0
[pid   358] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   358] close(3)                    = 0
[pid   358] rmdir("./4")                = 0
[pid   358] mkdir("./5", 0777 <unfinished ...>
[pid   484] <... openat resumed>)       = 4
[pid   358] <... mkdir resumed>)        = 0
[pid   358] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3
[pid   358] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   358] close(3)                    = 0
[pid   358] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55556caf1650) = 513
[pid   484] ioctl(4, LOOP_CLR_FD)       = 0
[pid   484] close(4)                    = 0
[pid   484] exit_group(0)               = ?
[pid   484] +++ exited with 0 +++
[pid   357] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=484, si_uid=0, si_status=0, si_utime=8, si_stime=25} ---
[pid   357] restart_syscall(<... resuming interrupted clone ...>./strace-static-x86_64: Process 513 attached
[   28.659504][  T484] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue
[   28.672534][  T484] ext4 filesystem being mounted at /root/syzkaller.c2lmo2/4/bus supports timestamps until (%ptR?) (0x7fffffff)
 <unfinished ...>
[pid   513] set_robust_list(0x55556caf1660, 24 <unfinished ...>
[pid   357] <... restart_syscall resumed>) = 0
[pid   357] umount2("./4", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] openat(AT_FDCWD, "./4", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   357] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   357] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   357] umount2("./4/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] newfstatat(AT_FDCWD, "./4/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   357] unlink("./4/binderfs")      = 0
[pid   357] umount2("./4/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   513] <... set_robust_list resumed>) = 0
[pid   513] chdir("./5")                = 0
[pid   513] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   513] setpgid(0, 0)               = 0
[pid   513] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   513] write(3, "1000", 4)         = 4
[pid   513] close(3)                    = 0
[pid   513] symlink("/dev/binderfs", "./binderfs") = 0
[pid   513] write(1, "executing program\n", 18executing program
) = 18
[pid   513] memfd_create("syzkaller", 0) = 3
[pid   513] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   357] <... umount2 resumed>)      = 0
[pid   357] umount2("./4/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] newfstatat(AT_FDCWD, "./4/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   357] umount2("./4/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] openat(AT_FDCWD, "./4/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   357] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   357] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   357] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   357] close(4)                    = 0
[pid   357] rmdir("./4/bus")            = 0
[pid   357] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   357] close(3)                    = 0
[pid   357] rmdir("./4")                = 0
[pid   357] mkdir("./5", 0777)          = 0
[pid   357] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   497] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   357] <... openat resumed>)       = 3
[pid   497] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3
[pid   357] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   497] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   508] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   510] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   357] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid   357] close(3)                    = 0
[pid   357] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55556caf1650) = 515
./strace-static-x86_64: Process 515 attached
[pid   515] set_robust_list(0x55556caf1660, 24) = 0
[pid   515] chdir("./5")                = 0
[pid   515] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   515] setpgid(0, 0)               = 0
[pid   515] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   515] write(3, "1000", 4)         = 4
[pid   515] close(3)                    = 0
[pid   515] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   515] write(1, "executing program\n", 18) = 18
[pid   515] memfd_create("syzkaller", 0) = 3
[pid   515] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   513] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   508] <... write resumed>)        = 20699119
[pid   508] munmap(0x7fb94d783000, 138412032) = 0
[pid   508] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4
[pid   508] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid   508] close(3)                    = 0
[pid   508] close(4)                    = 0
[pid   508] mkdir("./bus", 0777)        = 0
[pid   508] mount("/dev/loop4", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   497] <... ioctl resumed>)        = 0
[pid   497] close(3)                    = 0
[pid   497] memfd_create("syzkaller", 0) = 3
[pid   497] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   497] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144) = 262144
[pid   497] munmap(0x7fb94d783000, 138412032) = 0
[pid   497] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4
[pid   497] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid   497] close(3)                    = 0
[pid   497] close(4)                    = 0
[pid   497] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[pid   497] mount("/dev/loop3", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[   29.015658][  T508] F2FS-fs (loop4): invalid crc value
[pid   515] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   510] <... write resumed>)        = 20699119
[pid   510] munmap(0x7fb94d783000, 138412032) = 0
[pid   510] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   497] <... mount resumed>)        = 0
[pid   510] <... openat resumed>)       = 4
[pid   497] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid   510] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   497] <... openat resumed>)       = 3
[pid   513] <... write resumed>)        = 20699119
[pid   497] chdir("./bus")              = 0
[pid   497] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   513] munmap(0x7fb94d783000, 138412032 <unfinished ...>
[pid   510] <... ioctl resumed>)        = 0
[pid   510] close(3)                    = 0
[pid   497] <... openat resumed>)       = 4
[pid   510] close(4 <unfinished ...>
[pid   497] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid   510] <... close resumed>)        = 0
[pid   497] <... ioctl resumed>)        = 0
[pid   510] mkdir("./bus", 0777 <unfinished ...>
[pid   497] close(4 <unfinished ...>
[pid   513] <... munmap resumed>)       = 0
[pid   510] <... mkdir resumed>)        = 0
[pid   510] mount("/dev/loop0", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   497] <... close resumed>)        = 0
[pid   497] exit_group(0)               = ?
[pid   497] +++ exited with 0 +++
[pid   359] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=497, si_uid=0, si_status=0, si_utime=5, si_stime=23} ---
[pid   359] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid   513] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4
[   29.062839][  T497] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[   29.077061][  T497] ext4 filesystem being mounted at /root/syzkaller.P1RtK2/4/bus supports timestamps until (%ptR?) (0x7fffffff)
[pid   513] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   359] <... restart_syscall resumed>) = 0
[pid   359] umount2("./4", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   359] openat(AT_FDCWD, "./4", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   359] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   359] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   359] umount2("./4/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   359] newfstatat(AT_FDCWD, "./4/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   359] unlink("./4/binderfs")      = 0
[pid   359] umount2("./4/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   513] <... ioctl resumed>)        = 0
[pid   513] close(3)                    = 0
[pid   513] close(4)                    = 0
[pid   513] mkdir("./bus", 0777)        = 0
[pid   513] mount("/dev/loop2", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   359] <... umount2 resumed>)      = 0
[pid   359] umount2("./4/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   359] newfstatat(AT_FDCWD, "./4/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   359] umount2("./4/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   359] openat(AT_FDCWD, "./4/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   359] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   359] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   359] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   359] close(4)                    = 0
[pid   359] rmdir("./4/bus")            = 0
[pid   359] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   359] close(3)                    = 0
[pid   359] rmdir("./4")                = 0
[pid   359] mkdir("./5", 0777)          = 0
[pid   359] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3
[pid   359] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   359] close(3)                    = 0
[pid   359] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55556caf1650) = 525
[   29.129044][  T508] F2FS-fs (loop4): recover fsync data on readonly fs
[   29.129049][  T510] F2FS-fs (loop0): invalid crc value
[   29.141133][  T508] F2FS-fs (loop4): Cannot turn on quotas: -2 on 0
[   29.148674][  T508] F2FS-fs (loop4): checkpoint=disable on readonly fs
[   29.160742][  T513] F2FS-fs (loop2): invalid crc value
./strace-static-x86_64: Process 525 attached
[pid   525] set_robust_list(0x55556caf1660, 24) = 0
[pid   525] chdir("./5")                = 0
[pid   525] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   525] setpgid(0, 0)               = 0
[pid   525] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   525] write(3, "1000", 4)         = 4
[pid   525] close(3)                    = 0
[pid   525] symlink("/dev/binderfs", "./binderfs") = 0
[pid   525] write(1, "executing program\n", 18executing program
) = 18
[pid   525] memfd_create("syzkaller", 0) = 3
[pid   525] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   515] <... write resumed>)        = 20699119
[pid   515] munmap(0x7fb94d783000, 138412032) = 0
[   29.259041][  T513] F2FS-fs (loop2): recover fsync data on readonly fs
[   29.265820][  T513] F2FS-fs (loop2): Cannot turn on quotas: -2 on 0
[   29.266539][  T510] F2FS-fs (loop0): recover fsync data on readonly fs
[   29.282598][  T513] F2FS-fs (loop2): checkpoint=disable on readonly fs
[   29.290740][  T510] F2FS-fs (loop0): Cannot turn on quotas: -2 on 0
[pid   515] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   508] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   515] <... openat resumed>)       = 4
[pid   508] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   515] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   508] <... openat resumed>)       = 3
[pid   508] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   515] <... ioctl resumed>)        = 0
[pid   515] close(3)                    = 0
[pid   515] close(4 <unfinished ...>
[   29.307149][  T510] F2FS-fs (loop0): checkpoint=disable on readonly fs
[pid   525] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119) = 20699119
[pid   525] munmap(0x7fb94d783000, 138412032) = 0
[pid   515] <... close resumed>)        = 0
[pid   515] mkdir("./bus", 0777)        = 0
[pid   515] mount("/dev/loop1", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   525] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4
[pid   525] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid   525] close(3)                    = 0
[pid   525] close(4)                    = 0
[pid   525] mkdir("./bus", 0777)        = 0
[   29.410451][  T515] F2FS-fs (loop1): invalid crc value
[pid   525] mount("/dev/loop3", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   513] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   513] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3
[   29.443254][  T525] F2FS-fs (loop3): invalid crc value
[pid   513] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   508] <... ioctl resumed>)        = 0
[pid   508] close(3 <unfinished ...>
[pid   510] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   510] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   508] <... close resumed>)        = 0
[pid   510] <... openat resumed>)       = 3
[pid   508] memfd_create("syzkaller", 0 <unfinished ...>
[pid   510] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   508] <... memfd_create resumed>) = 3
[pid   508] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   508] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144) = 262144
[pid   508] munmap(0x7fb94d783000, 138412032) = 0
[   29.496788][  T515] F2FS-fs (loop1): recover fsync data on readonly fs
[   29.503470][  T515] F2FS-fs (loop1): Cannot turn on quotas: -2 on 0
[   29.506150][  T525] F2FS-fs (loop3): recover fsync data on readonly fs
[   29.510203][  T515] F2FS-fs (loop1): checkpoint=disable on readonly fs
[   29.516883][  T525] F2FS-fs (loop3): Cannot turn on quotas: -2 on 0
[   29.530104][  T525] F2FS-fs (loop3): checkpoint=disable on readonly fs
[pid   508] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   513] <... ioctl resumed>)        = 0
[pid   513] close(3 <unfinished ...>
[pid   508] <... openat resumed>)       = 4
[pid   508] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid   513] <... close resumed>)        = 0
[pid   513] memfd_create("syzkaller", 0) = 3
[pid   513] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   513] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 <unfinished ...>
[pid   508] close(3)                    = 0
[pid   508] close(4 <unfinished ...>
[pid   513] <... write resumed>)        = 262144
[pid   513] munmap(0x7fb94d783000, 138412032) = 0
[pid   513] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4
[pid   513] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid   508] <... close resumed>)        = 0
[pid   508] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[pid   508] mount("/dev/loop4", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   513] close(3)                    = 0
[pid   513] close(4)                    = 0
[pid   513] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[pid   513] mount("/dev/loop2", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   510] <... ioctl resumed>)        = 0
[pid   508] <... mount resumed>)        = 0
[pid   510] close(3 <unfinished ...>
[pid   508] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   508] chdir("./bus")              = 0
[pid   508] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   515] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   515] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   513] <... mount resumed>)        = 0
[pid   513] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   513] chdir("./bus")              = 0
[pid   513] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   525] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   510] <... close resumed>)        = 0
[pid   515] <... openat resumed>)       = 3
[pid   515] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   508] <... openat resumed>)       = 4
[pid   508] ioctl(4, LOOP_CLR_FD <unfinished ...>
[   29.649384][  T508] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
[   29.663290][  T508] ext4 filesystem being mounted at /root/syzkaller.iU8IiS/4/bus supports timestamps until (%ptR?) (0x7fffffff)
[   29.676890][  T513] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue
[   29.686339][  T513] ext4 filesystem being mounted at /root/syzkaller.aDc6zi/5/bus supports timestamps until (%ptR?) (0x7fffffff)
[pid   525] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   510] memfd_create("syzkaller", 0) = 3
[pid   510] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   510] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144) = 262144
[pid   510] munmap(0x7fb94d783000, 138412032) = 0
[pid   510] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   513] <... openat resumed>)       = 4
[pid   513] ioctl(4, LOOP_CLR_FD)       = 0
[pid   513] close(4)                    = 0
[pid   513] exit_group(0)               = ?
[pid   513] +++ exited with 0 +++
[pid   358] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=513, si_uid=0, si_status=0, si_utime=6, si_stime=28} ---
[pid   358] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid   525] <... openat resumed>)       = 3
[pid   510] <... openat resumed>)       = 4
[pid   510] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   525] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   508] <... ioctl resumed>)        = 0
[pid   510] <... ioctl resumed>)        = 0
[pid   510] close(3)                    = 0
[pid   510] close(4)                    = 0
[pid   510] mkdir("./bus", 0777 <unfinished ...>
[pid   358] <... restart_syscall resumed>) = 0
[pid   510] <... mkdir resumed>)        = -1 EEXIST (File exists)
[pid   510] mount("/dev/loop0", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   358] umount2("./5", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   358] openat(AT_FDCWD, "./5", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   358] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   358] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   358] umount2("./5/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   358] newfstatat(AT_FDCWD, "./5/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   358] unlink("./5/binderfs")      = 0
[pid   358] umount2("./5/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   508] close(4)                    = 0
[pid   508] exit_group(0)               = ?
[pid   508] +++ exited with 0 +++
[pid   360] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=508, si_uid=0, si_status=0, si_utime=5, si_stime=31} ---
[pid   360] umount2("./4", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   360] openat(AT_FDCWD, "./4", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   360] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   360] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   360] umount2("./4/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   360] newfstatat(AT_FDCWD, "./4/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   360] unlink("./4/binderfs")      = 0
[pid   360] umount2("./4/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   510] <... mount resumed>)        = 0
[pid   510] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   510] chdir("./bus")              = 0
[pid   510] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   515] <... ioctl resumed>)        = 0
[pid   515] close(3 <unfinished ...>
[pid   525] <... ioctl resumed>)        = 0
[   29.809246][  T510] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[   29.831562][  T510] ext4 filesystem being mounted at /root/syzkaller.RLArfL/5/bus supports timestamps until (%ptR?) (0x7fffffff)
[pid   525] close(3 <unfinished ...>
[pid   358] <... umount2 resumed>)      = 0
[pid   358] umount2("./5/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   358] newfstatat(AT_FDCWD, "./5/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   358] umount2("./5/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   358] openat(AT_FDCWD, "./5/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   358] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   358] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   358] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   358] close(4)                    = 0
[pid   358] rmdir("./5/bus")            = 0
[pid   358] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   358] close(3)                    = 0
[pid   358] rmdir("./5")                = 0
[pid   358] mkdir("./6", 0777)          = 0
[pid   358] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   515] <... close resumed>)        = 0
[pid   525] <... close resumed>)        = 0
[pid   515] memfd_create("syzkaller", 0 <unfinished ...>
[pid   525] memfd_create("syzkaller", 0) = 3
[pid   515] <... memfd_create resumed>) = 3
[pid   525] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid   515] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid   525] <... mmap resumed>)         = 0x7fb94d783000
[pid   515] <... mmap resumed>)         = 0x7fb94d783000
[pid   360] <... umount2 resumed>)      = 0
[pid   358] <... openat resumed>)       = 3
[pid   360] umount2("./4/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   358] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   360] newfstatat(AT_FDCWD, "./4/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   358] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid   360] umount2("./4/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   358] close(3 <unfinished ...>
[pid   510] <... openat resumed>)       = 4
[pid   360] openat(AT_FDCWD, "./4/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   358] <... close resumed>)        = 0
[pid   510] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid   360] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   358] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid   360] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   360] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   358] <... clone resumed>, child_tidptr=0x55556caf1650) = 541
[pid   360] close(4)                    = 0
[pid   360] rmdir("./4/bus")            = 0
[pid   360] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   360] close(3)                    = 0
[pid   360] rmdir("./4" <unfinished ...>
[pid   510] <... ioctl resumed>)        = 0
[pid   360] <... rmdir resumed>)        = 0
[pid   360] mkdir("./5", 0777)          = 0
[pid   360] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3
[pid   360] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   360] close(3)                    = 0
[pid   360] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid   510] close(4 <unfinished ...>
[pid   360] <... clone resumed>, child_tidptr=0x55556caf1650) = 542
[pid   510] <... close resumed>)        = 0
[pid   525] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 <unfinished ...>
[pid   510] exit_group(0)               = ?
[pid   515] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 <unfinished ...>
[pid   510] +++ exited with 0 +++
[pid   356] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=510, si_uid=0, si_status=0, si_utime=7, si_stime=24} ---
[pid   356] restart_syscall(<... resuming interrupted clone ...>./strace-static-x86_64: Process 542 attached
./strace-static-x86_64: Process 541 attached
 <unfinished ...>
[pid   542] set_robust_list(0x55556caf1660, 24 <unfinished ...>
[pid   541] set_robust_list(0x55556caf1660, 24 <unfinished ...>
[pid   542] <... set_robust_list resumed>) = 0
[pid   541] <... set_robust_list resumed>) = 0
[pid   541] chdir("./6" <unfinished ...>
[pid   542] chdir("./5")                = 0
[pid   541] <... chdir resumed>)        = 0
[pid   525] <... write resumed>)        = 262144
[pid   515] <... write resumed>)        = 262144
[pid   515] munmap(0x7fb94d783000, 138412032) = 0
[pid   525] munmap(0x7fb94d783000, 138412032) = 0
[pid   515] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4
[pid   525] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   356] <... restart_syscall resumed>) = 0
[pid   525] <... openat resumed>)       = 4
[pid   356] umount2("./5", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   356] openat(AT_FDCWD, "./5", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   356] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   356] getdents64(3,  <unfinished ...>
[pid   542] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid   541] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid   542] <... prctl resumed>)        = 0
[pid   525] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   515] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   541] <... prctl resumed>)        = 0
[pid   356] <... getdents64 resumed>0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   542] setpgid(0, 0 <unfinished ...>
[pid   541] setpgid(0, 0 <unfinished ...>
[pid   542] <... setpgid resumed>)      = 0
[pid   541] <... setpgid resumed>)      = 0
[pid   356] umount2("./5/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   542] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid   356] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   541] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid   542] <... openat resumed>)       = 3
[pid   356] newfstatat(AT_FDCWD, "./5/binderfs",  <unfinished ...>
[pid   542] write(3, "1000", 4 <unfinished ...>
[pid   541] <... openat resumed>)       = 3
[pid   542] <... write resumed>)        = 4
[pid   356] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   541] write(3, "1000", 4 <unfinished ...>
[pid   542] close(3 <unfinished ...>
[pid   356] unlink("./5/binderfs" <unfinished ...>
[pid   542] <... close resumed>)        = 0
[pid   541] <... write resumed>)        = 4
[pid   515] <... ioctl resumed>)        = 0
[pid   515] close(3)                    = 0
[pid   515] close(4 <unfinished ...>
[pid   356] <... unlink resumed>)       = 0
[pid   356] umount2("./5/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   541] close(3 <unfinished ...>
[pid   542] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid   541] <... close resumed>)        = 0
[pid   541] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid   525] <... ioctl resumed>)        = 0
[pid   525] close(3)                    = 0
[pid   525] close(4 <unfinished ...>
[pid   542] <... symlink resumed>)      = 0
[pid   541] <... symlink resumed>)      = 0
[pid   542] write(1, "executing program\n", 18 <unfinished ...>
[pid   541] write(1, "executing program\n", 18executing program
executing program
 <unfinished ...>
[pid   542] <... write resumed>)        = 18
[pid   541] <... write resumed>)        = 18
[pid   541] memfd_create("syzkaller", 0 <unfinished ...>
[pid   542] memfd_create("syzkaller", 0 <unfinished ...>
[pid   541] <... memfd_create resumed>) = 3
[pid   542] <... memfd_create resumed>) = 3
[pid   541] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid   542] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid   541] <... mmap resumed>)         = 0x7fb94d783000
[pid   542] <... mmap resumed>)         = 0x7fb94d783000
[pid   525] <... close resumed>)        = 0
[pid   525] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[pid   525] mount("/dev/loop3", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   515] <... close resumed>)        = 0
[pid   515] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[pid   515] mount("/dev/loop1", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   541] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   542] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   356] <... umount2 resumed>)      = 0
[pid   356] umount2("./5/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   356] newfstatat(AT_FDCWD, "./5/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   356] umount2("./5/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   356] openat(AT_FDCWD, "./5/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   356] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   356] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   356] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   356] close(4)                    = 0
[pid   356] rmdir("./5/bus")            = 0
[pid   356] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   356] close(3)                    = 0
[pid   356] rmdir("./5")                = 0
[pid   356] mkdir("./6", 0777)          = 0
[pid   356] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   356] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   356] close(3)                    = 0
[pid   356] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55556caf1650) = 547
./strace-static-x86_64: Process 547 attached
[pid   547] set_robust_list(0x55556caf1660, 24) = 0
[pid   547] chdir("./6")                = 0
[pid   547] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   547] setpgid(0, 0)               = 0
[pid   547] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   547] write(3, "1000", 4)         = 4
[pid   547] close(3)                    = 0
[pid   547] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   547] write(1, "executing program\n", 18) = 18
[pid   547] memfd_create("syzkaller", 0) = 3
[pid   547] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   542] <... write resumed>)        = 20699119
[   30.096780][  T515] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue
[   30.106695][  T525] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[   30.134307][  T525] ext4 filesystem being mounted at /root/syzkaller.P1RtK2/5/bus supports timestamps until (%ptR?) (0x7fffffff)
[pid   542] munmap(0x7fb94d783000, 138412032 <unfinished ...>
[pid   525] <... mount resumed>)        = 0
[pid   525] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   525] chdir("./bus")              = 0
[pid   525] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4
[pid   525] ioctl(4, LOOP_CLR_FD)       = 0
[pid   525] close(4 <unfinished ...>
[pid   542] <... munmap resumed>)       = 0
[pid   542] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4
[pid   525] <... close resumed>)        = 0
[pid   542] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   525] exit_group(0)               = ?
[pid   525] +++ exited with 0 +++
[pid   359] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=525, si_uid=0, si_status=0, si_utime=4, si_stime=26} ---
[pid   359] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid   542] <... ioctl resumed>)        = 0
[pid   515] <... mount resumed>)        = 0
[pid   359] <... restart_syscall resumed>) = 0
[pid   542] close(3 <unfinished ...>
[pid   515] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid   542] <... close resumed>)        = 0
[pid   515] <... openat resumed>)       = 3
[pid   542] close(4 <unfinished ...>
[pid   515] chdir("./bus" <unfinished ...>
[pid   359] umount2("./5", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   542] <... close resumed>)        = 0
[pid   359] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   515] <... chdir resumed>)        = 0
[pid   542] mkdir("./bus", 0777 <unfinished ...>
[pid   515] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   359] openat(AT_FDCWD, "./5", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid   542] <... mkdir resumed>)        = 0
[pid   359] <... openat resumed>)       = 3
[pid   515] <... openat resumed>)       = 4
[pid   542] mount("/dev/loop4", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   359] newfstatat(3, "",  <unfinished ...>
[pid   515] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid   359] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   359] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   359] umount2("./5/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   359] newfstatat(AT_FDCWD, "./5/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   359] unlink("./5/binderfs")      = 0
[   30.134495][  T515] ext4 filesystem being mounted at /root/syzkaller.c2lmo2/5/bus supports timestamps until (%ptR?) (0x7fffffff)
[pid   359] umount2("./5/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   541] <... write resumed>)        = 20699119
[pid   541] munmap(0x7fb94d783000, 138412032) = 0
[pid   541] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   515] <... ioctl resumed>)        = 0
[pid   515] close(4 <unfinished ...>
[pid   547] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   541] <... openat resumed>)       = 4
[pid   515] <... close resumed>)        = 0
[pid   515] exit_group(0 <unfinished ...>
[pid   541] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   359] <... umount2 resumed>)      = 0
[pid   515] <... exit_group resumed>)   = ?
[pid   515] +++ exited with 0 +++
[pid   357] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=515, si_uid=0, si_status=0, si_utime=5, si_stime=27} ---
[pid   359] umount2("./5/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid   359] newfstatat(AT_FDCWD, "./5/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   359] umount2("./5/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   541] <... ioctl resumed>)        = 0
[pid   359] openat(AT_FDCWD, "./5/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid   541] close(3 <unfinished ...>
[pid   359] <... openat resumed>)       = 4
[pid   541] <... close resumed>)        = 0
[pid   541] close(4 <unfinished ...>
[pid   359] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   357] <... restart_syscall resumed>) = 0
[pid   359] getdents64(4,  <unfinished ...>
[pid   357] umount2("./5", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   359] <... getdents64 resumed>0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   357] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   357] openat(AT_FDCWD, "./5", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid   359] getdents64(4,  <unfinished ...>
[pid   357] <... openat resumed>)       = 3
[pid   359] <... getdents64 resumed>0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   357] newfstatat(3, "",  <unfinished ...>
[pid   359] close(4 <unfinished ...>
[pid   357] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   357] getdents64(3,  <unfinished ...>
[pid   359] <... close resumed>)        = 0
[pid   357] <... getdents64 resumed>0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   359] rmdir("./5/bus" <unfinished ...>
[pid   357] umount2("./5/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   359] <... rmdir resumed>)        = 0
[pid   357] newfstatat(AT_FDCWD, "./5/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   359] getdents64(3,  <unfinished ...>
[pid   357] unlink("./5/binderfs" <unfinished ...>
[pid   359] <... getdents64 resumed>0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   359] close(3 <unfinished ...>
[pid   357] <... unlink resumed>)       = 0
[pid   357] umount2("./5/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   359] <... close resumed>)        = 0
[pid   359] rmdir("./5")                = 0
[pid   359] mkdir("./6", 0777)          = 0
[   30.230101][  T542] F2FS-fs (loop4): invalid crc value
[pid   359] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   541] <... close resumed>)        = 0
[pid   541] mkdir("./bus", 0777)        = 0
[pid   541] mount("/dev/loop2", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   547] <... write resumed>)        = 20699119
[pid   547] munmap(0x7fb94d783000, 138412032) = 0
[   30.288905][  T542] F2FS-fs (loop4): recover fsync data on readonly fs
[   30.295610][  T542] F2FS-fs (loop4): Cannot turn on quotas: -2 on 0
[   30.307253][  T542] F2FS-fs (loop4): checkpoint=disable on readonly fs
[pid   547] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   359] <... openat resumed>)       = 3
[pid   359] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   547] <... openat resumed>)       = 4
[pid   542] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   359] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid   357] <... umount2 resumed>)      = 0
[pid   357] umount2("./5/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] newfstatat(AT_FDCWD, "./5/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   357] umount2("./5/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] openat(AT_FDCWD, "./5/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   357] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   357] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   357] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   357] close(4)                    = 0
[pid   357] rmdir("./5/bus" <unfinished ...>
[pid   359] close(3 <unfinished ...>
[pid   357] <... rmdir resumed>)        = 0
[pid   357] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   357] close(3 <unfinished ...>
[pid   359] <... close resumed>)        = 0
[pid   357] <... close resumed>)        = 0
[pid   357] rmdir("./5" <unfinished ...>
[pid   359] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid   357] <... rmdir resumed>)        = 0
[pid   357] mkdir("./6", 0777)          = 0
[pid   357] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3
[pid   357] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   357] close(3)                    = 0
[pid   357] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLDexecuting program
 <unfinished ...>
[pid   359] <... clone resumed>, child_tidptr=0x55556caf1650) = 553
[pid   357] <... clone resumed>, child_tidptr=0x55556caf1650) = 554
[pid   547] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   542] openat(AT_FDCWD, "/dev/loop4", O_RDWR./strace-static-x86_64: Process 553 attached
 <unfinished ...>
[pid   553] set_robust_list(0x55556caf1660, 24) = 0
[pid   553] chdir("./6")                = 0
[pid   553] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   553] setpgid(0, 0)               = 0
[pid   553] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   553] write(3, "1000", 4)         = 4
[pid   553] close(3)                    = 0
[pid   553] symlink("/dev/binderfs", "./binderfs") = 0
[pid   553] write(1, "executing program\n", 18) = 18
[pid   553] memfd_create("syzkaller", 0) = 3
[pid   553] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
./strace-static-x86_64: Process 554 attached
[pid   547] <... ioctl resumed>)        = 0
[pid   542] <... openat resumed>)       = 3
[pid   542] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   547] close(3)                    = 0
[pid   554] set_robust_list(0x55556caf1660, 24) = 0
[pid   547] close(4 <unfinished ...>
[pid   554] chdir("./6")                = 0
[pid   554] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   554] setpgid(0, 0)               = 0
[pid   554] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   554] write(3, "1000", 4)         = 4
[pid   554] close(3)                    = 0
[pid   554] symlink("/dev/binderfs", "./binderfs") = 0
[pid   554] write(1, "executing program\n", 18) = 18
executing program
[pid   554] memfd_create("syzkaller", 0) = 3
[pid   554] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[   30.449636][  T541] F2FS-fs (loop2): invalid crc value
[   30.498740][  T541] F2FS-fs (loop2): recover fsync data on readonly fs
[   30.505601][  T541] F2FS-fs (loop2): Cannot turn on quotas: -2 on 0
[   30.512255][  T541] F2FS-fs (loop2): checkpoint=disable on readonly fs
[pid   547] <... close resumed>)        = 0
[pid   547] mkdir("./bus", 0777)        = 0
[pid   547] mount("/dev/loop0", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   553] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[   30.603843][  T547] F2FS-fs (loop0): invalid crc value
[pid   554] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   541] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   541] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3
[pid   541] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   554] <... write resumed>)        = 20699119
[pid   554] munmap(0x7fb94d783000, 138412032) = 0
[pid   554] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   542] <... ioctl resumed>)        = 0
[pid   554] <... openat resumed>)       = 4
[pid   542] close(3 <unfinished ...>
[pid   554] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid   542] <... close resumed>)        = 0
[pid   554] close(3)                    = 0
[pid   554] close(4 <unfinished ...>
[pid   542] memfd_create("syzkaller", 0) = 3
[pid   542] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   542] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144) = 262144
[pid   542] munmap(0x7fb94d783000, 138412032) = 0
[pid   542] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   553] <... write resumed>)        = 20699119
[pid   553] munmap(0x7fb94d783000, 138412032) = 0
[pid   553] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   541] <... ioctl resumed>)        = 0
[   30.736679][  T547] F2FS-fs (loop0): recover fsync data on readonly fs
[   30.751096][  T547] F2FS-fs (loop0): Cannot turn on quotas: -2 on 0
[   30.758041][  T547] F2FS-fs (loop0): checkpoint=disable on readonly fs
[pid   541] close(3 <unfinished ...>
[pid   554] <... close resumed>)        = 0
[pid   553] <... openat resumed>)       = 4
[pid   553] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid   553] close(3)                    = 0
[pid   553] close(4 <unfinished ...>
[pid   554] mkdir("./bus", 0777)        = 0
[pid   554] mount("/dev/loop1", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   553] <... close resumed>)        = 0
[pid   542] <... openat resumed>)       = 4
[pid   541] <... close resumed>)        = 0
[pid   541] memfd_create("syzkaller", 0 <unfinished ...>
[pid   542] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   553] mkdir("./bus", 0777)        = 0
[pid   541] <... memfd_create resumed>) = 3
[pid   541] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   553] mount("/dev/loop3", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   541] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144) = 262144
[pid   541] munmap(0x7fb94d783000, 138412032) = 0
[pid   541] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   542] <... ioctl resumed>)        = 0
[pid   542] close(3)                    = 0
[   30.854995][  T554] F2FS-fs (loop1): invalid crc value
[pid   542] close(4)                    = 0
[pid   542] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[pid   542] mount("/dev/loop4", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   547] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   547] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   541] <... openat resumed>)       = 4
[pid   547] <... openat resumed>)       = 3
[pid   541] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   547] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   541] <... ioctl resumed>)        = 0
[pid   541] close(3)                    = 0
[   30.883094][  T554] F2FS-fs (loop1): recover fsync data on readonly fs
[   30.890031][  T554] F2FS-fs (loop1): Cannot turn on quotas: -2 on 0
[   30.896507][  T554] F2FS-fs (loop1): checkpoint=disable on readonly fs
[   30.905125][  T553] F2FS-fs (loop3): invalid crc value
[pid   541] close(4 <unfinished ...>
[pid   542] <... mount resumed>)        = 0
[pid   541] <... close resumed>)        = 0
[pid   541] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[pid   541] mount("/dev/loop2", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   542] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   542] chdir("./bus")              = 0
[pid   542] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4
[   30.952826][  T553] F2FS-fs (loop3): recover fsync data on readonly fs
[   30.958827][  T542] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
[   30.959544][  T553] F2FS-fs (loop3): Cannot turn on quotas: -2 on 0
[   30.968757][  T542] ext4 filesystem being mounted at /root/syzkaller.iU8IiS/5/bus supports timestamps until (%ptR?) (0x7fffffff)
[   30.977232][  T553] F2FS-fs (loop3): checkpoint=disable on readonly fs
[pid   542] ioctl(4, LOOP_CLR_FD)       = 0
[pid   542] close(4)                    = 0
[pid   542] exit_group(0)               = ?
[pid   542] +++ exited with 0 +++
[pid   360] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=542, si_uid=0, si_status=0, si_utime=6, si_stime=23} ---
[pid   360] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   360] umount2("./5", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   360] openat(AT_FDCWD, "./5", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   360] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   360] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   360] umount2("./5/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   360] newfstatat(AT_FDCWD, "./5/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   360] unlink("./5/binderfs")      = 0
[pid   360] umount2("./5/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   360] umount2("./5/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   360] newfstatat(AT_FDCWD, "./5/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   360] umount2("./5/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   360] openat(AT_FDCWD, "./5/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   360] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   360] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   360] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   360] close(4)                    = 0
[pid   360] rmdir("./5/bus")            = 0
[pid   360] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   360] close(3)                    = 0
[pid   360] rmdir("./5")                = 0
[pid   360] mkdir("./6", 0777)          = 0
[pid   360] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3
[pid   360] ioctl(3, LOOP_CLR_FD)       = 0
[pid   360] close(3)                    = 0
[pid   360] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55556caf1650) = 568
./strace-static-x86_64: Process 568 attached
[pid   568] set_robust_list(0x55556caf1660, 24) = 0
[pid   568] chdir("./6")                = 0
[pid   568] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   568] setpgid(0, 0)               = 0
[pid   568] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   568] write(3, "1000", 4)         = 4
[pid   568] close(3)                    = 0
[pid   568] symlink("/dev/binderfs", "./binderfs"executing program
) = 0
[pid   568] write(1, "executing program\n", 18 <unfinished ...>
[pid   554] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   568] <... write resumed>)        = 18
[pid   554] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   568] memfd_create("syzkaller", 0) = 3
[pid   568] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   541] <... mount resumed>)        = 0
[pid   541] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   541] chdir("./bus")              = 0
[pid   541] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   547] <... ioctl resumed>)        = 0
[pid   547] close(3 <unfinished ...>
[pid   554] <... openat resumed>)       = 3
[pid   541] <... openat resumed>)       = 4
[pid   554] ioctl(3, LOOP_CLR_FD <unfinished ...>
[   31.054066][  T541] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue
[   31.067318][  T541] ext4 filesystem being mounted at /root/syzkaller.aDc6zi/6/bus supports timestamps until (%ptR?) (0x7fffffff)
[pid   541] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid   568] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119) = 20699119
[pid   568] munmap(0x7fb94d783000, 138412032) = 0
[pid   568] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   553] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   547] <... close resumed>)        = 0
[pid   541] <... ioctl resumed>)        = 0
[pid   553] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   541] close(4 <unfinished ...>
[pid   553] <... openat resumed>)       = 3
[pid   541] <... close resumed>)        = 0
[pid   553] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   541] exit_group(0)               = ?
[pid   541] +++ exited with 0 +++
[pid   547] memfd_create("syzkaller", 0) = 3
[pid   358] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=541, si_uid=0, si_status=0, si_utime=6, si_stime=23} ---
[pid   358] umount2("./6", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   547] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid   358] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   358] openat(AT_FDCWD, "./6", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   358] newfstatat(3, "",  <unfinished ...>
[pid   547] <... mmap resumed>)         = 0x7fb94d783000
[pid   358] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   358] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   358] umount2("./6/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   358] newfstatat(AT_FDCWD, "./6/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   358] unlink("./6/binderfs")      = 0
[pid   358] umount2("./6/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   547] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144) = 262144
[pid   547] munmap(0x7fb94d783000, 138412032) = 0
[pid   547] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   554] <... ioctl resumed>)        = 0
[pid   554] close(3 <unfinished ...>
[pid   568] <... openat resumed>)       = 4
[pid   568] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   547] <... openat resumed>)       = 4
[pid   547] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   568] <... ioctl resumed>)        = 0
[pid   554] <... close resumed>)        = 0
[pid   358] <... umount2 resumed>)      = 0
[pid   568] close(3 <unfinished ...>
[pid   554] memfd_create("syzkaller", 0 <unfinished ...>
[pid   358] umount2("./6/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   568] <... close resumed>)        = 0
[pid   554] <... memfd_create resumed>) = 3
[pid   358] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   568] close(4 <unfinished ...>
[pid   554] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid   547] <... ioctl resumed>)        = 0
[pid   568] <... close resumed>)        = 0
[pid   554] <... mmap resumed>)         = 0x7fb94d783000
[pid   547] close(3 <unfinished ...>
[pid   358] newfstatat(AT_FDCWD, "./6/bus",  <unfinished ...>
[pid   568] mkdir("./bus", 0777 <unfinished ...>
[pid   554] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 <unfinished ...>
[pid   358] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   568] <... mkdir resumed>)        = 0
[pid   547] <... close resumed>)        = 0
[pid   358] umount2("./6/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   568] mount("/dev/loop4", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   554] <... write resumed>)        = 262144
[pid   547] close(4 <unfinished ...>
[pid   358] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   554] munmap(0x7fb94d783000, 138412032 <unfinished ...>
[pid   358] openat(AT_FDCWD, "./6/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   554] <... munmap resumed>)       = 0
[pid   358] newfstatat(4, "",  <unfinished ...>
[pid   554] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   358] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   358] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   358] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   358] close(4)                    = 0
[pid   358] rmdir("./6/bus")            = 0
[pid   358] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   358] close(3)                    = 0
[pid   358] rmdir("./6")                = 0
[pid   358] mkdir("./7", 0777)          = 0
[pid   358] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   547] <... close resumed>)        = 0
[pid   554] <... openat resumed>)       = 4
[pid   554] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   547] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[   31.350443][  T568] F2FS-fs (loop4): invalid crc value
[pid   547] mount("/dev/loop0", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   554] <... ioctl resumed>)        = 0
[pid   358] <... openat resumed>)       = 3
[pid   554] close(3)                    = 0
[pid   554] close(4 <unfinished ...>
[pid   358] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   553] <... ioctl resumed>)        = 0
[pid   553] close(3 <unfinished ...>
[pid   554] <... close resumed>)        = 0
[pid   554] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[pid   554] mount("/dev/loop1", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   553] <... close resumed>)        = 0
[pid   358] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid   553] memfd_create("syzkaller", 0 <unfinished ...>
[pid   358] close(3 <unfinished ...>
[pid   553] <... memfd_create resumed>) = 3
[pid   358] <... close resumed>)        = 0
[pid   553] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid   358] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid   553] <... mmap resumed>)         = 0x7fb94d783000
[pid   553] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 <unfinished ...>
[pid   358] <... clone resumed>, child_tidptr=0x55556caf1650) = 576
[pid   553] <... write resumed>)        = 262144
[pid   553] munmap(0x7fb94d783000, 138412032) = 0
[pid   553] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4
[   31.405348][  T568] F2FS-fs (loop4): recover fsync data on readonly fs
[   31.412678][  T568] F2FS-fs (loop4): Cannot turn on quotas: -2 on 0
[   31.413684][  T547] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[   31.419789][  T568] F2FS-fs (loop4): checkpoint=disable on readonly fs
[   31.429841][  T547] ext4 filesystem being mounted at /root/syzkaller.RLArfL/6/bus supports timestamps until (%ptR?) (0x7fffffff)
[pid   553] ioctl(4, LOOP_SET_FD, 3./strace-static-x86_64: Process 576 attached
)    = 0
[pid   553] close(3)                    = 0
[pid   553] close(4)                    = 0
[pid   576] set_robust_list(0x55556caf1660, 24 <unfinished ...>
[pid   553] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[pid   553] mount("/dev/loop3", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   576] <... set_robust_list resumed>) = 0
[pid   576] chdir("./7")                = 0
[pid   576] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid   554] <... mount resumed>)        = 0
[pid   547] <... mount resumed>)        = 0
[pid   576] <... prctl resumed>)        = 0
[pid   547] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid   576] setpgid(0, 0 <unfinished ...>
[pid   547] <... openat resumed>)       = 3
[pid   576] <... setpgid resumed>)      = 0
[pid   547] chdir("./bus" <unfinished ...>
[pid   554] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid   576] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid   554] <... openat resumed>)       = 3
[pid   547] <... chdir resumed>)        = 0
[pid   576] <... openat resumed>)       = 3
[pid   547] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   554] chdir("./bus" <unfinished ...>
[pid   576] write(3, "1000", 4 <unfinished ...>
[pid   554] <... chdir resumed>)        = 0
[pid   547] <... openat resumed>)       = 4
[pid   576] <... write resumed>)        = 4
[pid   554] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   547] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid   576] close(3 <unfinished ...>
[pid   547] <... ioctl resumed>)        = 0
[pid   554] <... openat resumed>)       = 4
[pid   576] <... close resumed>)        = 0
[pid   547] close(4 <unfinished ...>
[pid   554] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid   576] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid   554] <... ioctl resumed>)        = 0
[pid   547] <... close resumed>)        = 0
executing program
[pid   576] <... symlink resumed>)      = 0
[pid   547] exit_group(0 <unfinished ...>
[pid   576] write(1, "executing program\n", 18 <unfinished ...>
[pid   547] <... exit_group resumed>)   = ?
[pid   576] <... write resumed>)        = 18
[pid   576] memfd_create("syzkaller", 0) = 3
[pid   576] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   547] +++ exited with 0 +++
[pid   356] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=547, si_uid=0, si_status=0, si_utime=6, si_stime=25} ---
[pid   356] umount2("./6", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   356] openat(AT_FDCWD, "./6", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   356] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   356] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   356] umount2("./6/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   356] newfstatat(AT_FDCWD, "./6/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   356] unlink("./6/binderfs")      = 0
[pid   356] umount2("./6/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[   31.463938][  T554] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue
[   31.476155][  T554] ext4 filesystem being mounted at /root/syzkaller.c2lmo2/6/bus supports timestamps until (%ptR?) (0x7fffffff)
[   31.498622][  T547] syz-executor300 (547) used greatest stack depth: 23000 bytes left
[pid   554] close(4 <unfinished ...>
[pid   553] <... mount resumed>)        = 0
[pid   356] <... umount2 resumed>)      = 0
[pid   553] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   553] chdir("./bus")              = 0
[pid   553] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4
[pid   553] ioctl(4, LOOP_CLR_FD)       = 0
[pid   553] close(4)                    = 0
[pid   553] exit_group(0)               = ?
[pid   553] +++ exited with 0 +++
[pid   359] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=553, si_uid=0, si_status=0, si_utime=6, si_stime=29} ---
[pid   356] umount2("./6/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   356] newfstatat(AT_FDCWD, "./6/bus",  <unfinished ...>
[pid   359] umount2("./6", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   356] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   359] openat(AT_FDCWD, "./6", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid   356] umount2("./6/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   359] <... openat resumed>)       = 3
[pid   356] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   359] newfstatat(3, "",  <unfinished ...>
[pid   356] openat(AT_FDCWD, "./6/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid   359] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   356] <... openat resumed>)       = 4
[pid   359] getdents64(3,  <unfinished ...>
[pid   356] newfstatat(4, "",  <unfinished ...>
[pid   359] <... getdents64 resumed>0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   356] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   359] umount2("./6/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   356] getdents64(4,  <unfinished ...>
[pid   359] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   359] newfstatat(AT_FDCWD, "./6/binderfs",  <unfinished ...>
[pid   356] <... getdents64 resumed>0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   359] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   356] getdents64(4,  <unfinished ...>
[pid   359] unlink("./6/binderfs" <unfinished ...>
[pid   356] <... getdents64 resumed>0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   359] <... unlink resumed>)       = 0
[pid   356] close(4 <unfinished ...>
[pid   359] umount2("./6/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   356] <... close resumed>)        = 0
[pid   356] rmdir("./6/bus")            = 0
[pid   356] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   356] close(3)                    = 0
[pid   356] rmdir("./6")                = 0
[pid   356] mkdir("./7", 0777)          = 0
[pid   356] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   576] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   568] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   554] <... close resumed>)        = 0
[pid   568] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   554] exit_group(0 <unfinished ...>
[pid   568] <... openat resumed>)       = 3
[pid   554] <... exit_group resumed>)   = ?
[   31.518909][  T553] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[   31.528243][  T553] ext4 filesystem being mounted at /root/syzkaller.P1RtK2/6/bus supports timestamps until (%ptR?) (0x7fffffff)
[pid   568] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   554] +++ exited with 0 +++
[pid   357] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=554, si_uid=0, si_status=0, si_utime=7, si_stime=27} ---
[pid   357] umount2("./6", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] openat(AT_FDCWD, "./6", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   357] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   357] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   357] umount2("./6/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] newfstatat(AT_FDCWD, "./6/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   357] unlink("./6/binderfs")      = 0
[pid   357] umount2("./6/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   576] <... write resumed>)        = 20699119
[pid   576] munmap(0x7fb94d783000, 138412032 <unfinished ...>
[pid   359] <... umount2 resumed>)      = 0
[pid   356] <... openat resumed>)       = 3
[pid   359] umount2("./6/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   356] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   359] newfstatat(AT_FDCWD, "./6/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   359] umount2("./6/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   359] openat(AT_FDCWD, "./6/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   359] newfstatat(4, "",  <unfinished ...>
[pid   576] <... munmap resumed>)       = 0
[pid   359] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   576] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   359] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   359] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   359] close(4)                    = 0
[pid   359] rmdir("./6/bus")            = 0
[pid   359] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   359] close(3)                    = 0
[pid   359] rmdir("./6")                = 0
[pid   359] mkdir("./7", 0777)          = 0
[pid   359] openat(AT_FDCWD, "/dev/loop3", O_RDWRexecuting program
 <unfinished ...>
[pid   356] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid   356] close(3)                    = 0
[pid   356] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55556caf1650) = 582
./strace-static-x86_64: Process 582 attached
[pid   582] set_robust_list(0x55556caf1660, 24) = 0
[pid   582] chdir("./7")                = 0
[pid   582] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   582] setpgid(0, 0)               = 0
[pid   582] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   582] write(3, "1000", 4)         = 4
[pid   582] close(3)                    = 0
[pid   582] symlink("/dev/binderfs", "./binderfs") = 0
[pid   582] write(1, "executing program\n", 18) = 18
[pid   582] memfd_create("syzkaller", 0) = 3
[pid   582] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   359] <... openat resumed>)       = 3
[pid   359] ioctl(3, LOOP_CLR_FD)       = 0
[pid   359] close(3)                    = 0
[pid   359] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55556caf1650) = 583
./strace-static-x86_64: Process 583 attached
[pid   583] set_robust_list(0x55556caf1660, 24) = 0
[pid   583] chdir("./7")                = 0
[pid   583] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   583] setpgid(0, 0)               = 0
[pid   583] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   583] write(3, "1000", 4)         = 4
[pid   583] close(3)                    = 0
[pid   583] symlink("/dev/binderfs", "./binderfs") = 0
[pid   583] write(1, "executing program\n", 18executing program
) = 18
[pid   583] memfd_create("syzkaller", 0) = 3
[pid   583] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   576] <... openat resumed>)       = 4
[pid   357] <... umount2 resumed>)      = 0
[pid   357] umount2("./6/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   576] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   357] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   357] newfstatat(AT_FDCWD, "./6/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   357] umount2("./6/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] openat(AT_FDCWD, "./6/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   357] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   357] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   357] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   357] close(4)                    = 0
[pid   357] rmdir("./6/bus")            = 0
[pid   357] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   357] close(3)                    = 0
[pid   357] rmdir("./6")                = 0
[pid   357] mkdir("./7", 0777)          = 0
[pid   357] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   576] <... ioctl resumed>)        = 0
[pid   357] <... openat resumed>)       = 3
[pid   357] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   357] close(3)                    = 0
[pid   357] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55556caf1650) = 585
[pid   576] close(3)                    = 0
[pid   576] close(4)                    = 0
[pid   576] mkdir("./bus", 0777)        = 0
[pid   576] mount("/dev/loop2", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"..../strace-static-x86_64: Process 585 attached
 <unfinished ...>
[pid   585] set_robust_list(0x55556caf1660, 24) = 0
[pid   585] chdir("./7")                = 0
[pid   585] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   585] setpgid(0, 0)               = 0
[pid   585] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   585] write(3, "1000", 4)         = 4
[pid   585] close(3)                    = 0
[pid   585] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   585] write(1, "executing program\n", 18) = 18
[pid   585] memfd_create("syzkaller", 0) = 3
[pid   585] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[   31.775324][  T576] F2FS-fs (loop2): invalid crc value
[pid   582] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   568] <... ioctl resumed>)        = 0
[pid   568] close(3)                    = 0
[pid   568] memfd_create("syzkaller", 0) = 3
[pid   568] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   568] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144) = 262144
[pid   568] munmap(0x7fb94d783000, 138412032) = 0
[pid   568] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4
[pid   568] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid   568] close(3)                    = 0
[pid   568] close(4)                    = 0
[pid   568] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[   31.906902][  T576] F2FS-fs (loop2): recover fsync data on readonly fs
[   31.913833][  T576] F2FS-fs (loop2): Cannot turn on quotas: -2 on 0
[   31.928245][  T568] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
[   31.947208][  T576] F2FS-fs (loop2): checkpoint=disable on readonly fs
[pid   568] mount("/dev/loop4", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   585] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   583] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   568] <... mount resumed>)        = 0
[pid   568] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   568] chdir("./bus")              = 0
[pid   568] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4
[pid   568] ioctl(4, LOOP_CLR_FD)       = 0
[pid   568] close(4)                    = 0
[pid   568] exit_group(0)               = ?
[pid   568] +++ exited with 0 +++
[pid   360] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=568, si_uid=0, si_status=0, si_utime=4, si_stime=24} ---
[pid   360] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   360] umount2("./6", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   360] openat(AT_FDCWD, "./6", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   360] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   360] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   360] umount2("./6/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   360] newfstatat(AT_FDCWD, "./6/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   360] unlink("./6/binderfs")      = 0
[pid   360] umount2("./6/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   582] <... write resumed>)        = 20699119
[   31.953826][  T568] ext4 filesystem being mounted at /root/syzkaller.iU8IiS/6/bus supports timestamps until (%ptR?) (0x7fffffff)
[pid   582] munmap(0x7fb94d783000, 138412032) = 0
[pid   582] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid   360] <... umount2 resumed>)      = 0
[pid   582] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   360] umount2("./6/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   360] newfstatat(AT_FDCWD, "./6/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   360] umount2("./6/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   360] openat(AT_FDCWD, "./6/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   360] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   360] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   360] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   360] close(4)                    = 0
[pid   360] rmdir("./6/bus")            = 0
[pid   360] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   360] close(3)                    = 0
[pid   360] rmdir("./6")                = 0
[pid   582] <... ioctl resumed>)        = 0
[pid   360] mkdir("./7", 0777 <unfinished ...>
[pid   582] close(3)                    = 0
[pid   582] close(4 <unfinished ...>
[pid   360] <... mkdir resumed>)        = 0
[pid   360] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   585] <... write resumed>)        = 20699119
[pid   585] munmap(0x7fb94d783000, 138412032) = 0
[pid   585] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   583] <... write resumed>)        = 20699119
[pid   583] munmap(0x7fb94d783000, 138412032) = 0
[pid   583] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   582] <... close resumed>)        = 0
[pid   582] mkdir("./bus", 0777)        = 0
[pid   582] mount("/dev/loop0", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   576] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   585] <... openat resumed>)       = 4
[pid   583] <... openat resumed>)       = 4
[pid   583] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   585] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   576] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   360] <... openat resumed>)       = 3
[pid   576] <... openat resumed>)       = 3
[pid   360] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   576] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   360] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid   360] close(3 <unfinished ...>
[pid   585] <... ioctl resumed>)        = 0
[pid   360] <... close resumed>)        = 0
[pid   585] close(3 <unfinished ...>
[pid   360] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid   585] <... close resumed>)        = 0
[   32.188824][  T582] F2FS-fs (loop0): invalid crc value
[   32.214615][  T582] F2FS-fs (loop0): recover fsync data on readonly fs
[   32.221356][  T582] F2FS-fs (loop0): Cannot turn on quotas: -2 on 0
[pid   585] close(4 <unfinished ...>
[pid   360] <... clone resumed>, child_tidptr=0x55556caf1650) = 595
[pid   585] <... close resumed>)        = 0
[pid   583] <... ioctl resumed>)        = 0
[pid   585] mkdir("./bus", 0777)        = 0
[pid   583] close(3 <unfinished ...>
[   32.237439][  T582] F2FS-fs (loop0): checkpoint=disable on readonly fs
[pid   585] mount("/dev/loop1", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   583] <... close resumed>)        = 0
[pid   583] close(4./strace-static-x86_64: Process 595 attached
 <unfinished ...>
[pid   595] set_robust_list(0x55556caf1660, 24) = 0
[pid   595] chdir("./7")                = 0
[pid   595] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   595] setpgid(0, 0)               = 0
[pid   595] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   595] write(3, "1000", 4)         = 4
[pid   595] close(3)                    = 0
[pid   595] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   595] write(1, "executing program\n", 18) = 18
[pid   595] memfd_create("syzkaller", 0) = 3
[pid   595] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   583] <... close resumed>)        = 0
[pid   583] mkdir("./bus", 0777)        = 0
[pid   583] mount("/dev/loop3", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   576] <... ioctl resumed>)        = 0
[   32.272618][  T585] F2FS-fs (loop1): invalid crc value
[pid   576] close(3)                    = 0
[pid   576] memfd_create("syzkaller", 0) = 3
[pid   576] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   576] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144) = 262144
[pid   576] munmap(0x7fb94d783000, 138412032) = 0
[pid   576] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4
[pid   576] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid   576] close(3)                    = 0
[   32.354591][  T585] F2FS-fs (loop1): recover fsync data on readonly fs
[   32.361817][  T585] F2FS-fs (loop1): Cannot turn on quotas: -2 on 0
[   32.363724][  T583] F2FS-fs (loop3): invalid crc value
[   32.369189][  T585] F2FS-fs (loop1): checkpoint=disable on readonly fs
[pid   576] close(4 <unfinished ...>
[pid   595] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   576] <... close resumed>)        = 0
[pid   576] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[   32.434445][  T583] F2FS-fs (loop3): recover fsync data on readonly fs
[   32.441976][  T583] F2FS-fs (loop3): Cannot turn on quotas: -2 on 0
[   32.448714][  T583] F2FS-fs (loop3): checkpoint=disable on readonly fs
[pid   576] mount("/dev/loop2", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   595] <... write resumed>)        = 20699119
[pid   595] munmap(0x7fb94d783000, 138412032) = 0
[pid   595] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   582] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   582] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   595] <... openat resumed>)       = 4
[pid   585] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   582] <... openat resumed>)       = 3
[pid   595] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   585] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   582] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   595] <... ioctl resumed>)        = 0
[pid   595] close(3)                    = 0
[pid   595] close(4 <unfinished ...>
[pid   576] <... mount resumed>)        = 0
[pid   576] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   576] chdir("./bus")              = 0
[pid   576] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   585] <... openat resumed>)       = 3
[   32.589224][  T576] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue
[   32.598153][  T576] ext4 filesystem being mounted at /root/syzkaller.aDc6zi/7/bus supports timestamps until (%ptR?) (0x7fffffff)
[pid   585] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   595] <... close resumed>)        = 0
[pid   583] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   595] mkdir("./bus", 0777 <unfinished ...>
[pid   583] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   595] <... mkdir resumed>)        = 0
[pid   595] mount("/dev/loop4", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   582] <... ioctl resumed>)        = 0
[pid   583] <... openat resumed>)       = 3
[pid   582] close(3 <unfinished ...>
[pid   576] <... openat resumed>)       = 4
[pid   582] <... close resumed>)        = 0
[pid   576] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid   582] memfd_create("syzkaller", 0 <unfinished ...>
[pid   576] <... ioctl resumed>)        = 0
[pid   582] <... memfd_create resumed>) = 3
[pid   576] close(4 <unfinished ...>
[pid   582] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid   576] <... close resumed>)        = 0
[pid   582] <... mmap resumed>)         = 0x7fb94d783000
[pid   576] exit_group(0 <unfinished ...>
[pid   583] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   582] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 <unfinished ...>
[pid   576] <... exit_group resumed>)   = ?
[pid   582] <... write resumed>)        = 262144
[pid   576] +++ exited with 0 +++
[pid   582] munmap(0x7fb94d783000, 138412032) = 0
[pid   582] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   358] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=576, si_uid=0, si_status=0, si_utime=3, si_stime=23} ---
[pid   358] umount2("./7", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   358] openat(AT_FDCWD, "./7", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   582] <... openat resumed>)       = 4
[pid   358] newfstatat(3, "",  <unfinished ...>
[pid   582] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   358] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   582] <... ioctl resumed>)        = 0
[pid   582] close(3)                    = 0
[pid   582] close(4 <unfinished ...>
[pid   358] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   358] umount2("./7/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   358] newfstatat(AT_FDCWD, "./7/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   358] unlink("./7/binderfs")      = 0
[   32.740217][  T595] F2FS-fs (loop4): invalid crc value
[pid   358] umount2("./7/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   582] <... close resumed>)        = 0
[pid   582] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[pid   582] mount("/dev/loop0", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   585] <... ioctl resumed>)        = 0
[   32.790834][  T595] F2FS-fs (loop4): recover fsync data on readonly fs
[   32.797803][  T595] F2FS-fs (loop4): Cannot turn on quotas: -2 on 0
[   32.804728][  T595] F2FS-fs (loop4): checkpoint=disable on readonly fs
[pid   585] close(3 <unfinished ...>
[pid   582] <... mount resumed>)        = 0
[pid   582] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid   358] <... umount2 resumed>)      = 0
[pid   585] <... close resumed>)        = 0
[pid   583] <... ioctl resumed>)        = 0
[pid   582] <... openat resumed>)       = 3
[pid   358] umount2("./7/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   585] memfd_create("syzkaller", 0) = 3
[pid   585] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   358] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   358] newfstatat(AT_FDCWD, "./7/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   358] umount2("./7/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   358] openat(AT_FDCWD, "./7/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   358] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   358] getdents64(4,  <unfinished ...>
[pid   585] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 <unfinished ...>
[pid   358] <... getdents64 resumed>0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   358] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   358] close(4)                    = 0
[pid   358] rmdir("./7/bus")            = 0
[pid   358] getdents64(3,  <unfinished ...>
[pid   585] <... write resumed>)        = 262144
[pid   358] <... getdents64 resumed>0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   358] close(3)                    = 0
[pid   358] rmdir("./7")                = 0
[pid   358] mkdir("./8", 0777)          = 0
[pid   358] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3
[pid   358] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   358] close(3)                    = 0
[pid   358] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid   585] munmap(0x7fb94d783000, 138412032 <unfinished ...>
[pid   358] <... clone resumed>, child_tidptr=0x55556caf1650) = 607
[pid   583] close(3)                    = 0
[pid   582] chdir("./bus" <unfinished ...>
[pid   583] memfd_create("syzkaller", 0 <unfinished ...>
[pid   582] <... chdir resumed>)        = 0
[pid   583] <... memfd_create resumed>) = 3
[pid   582] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid   582] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid   585] <... munmap resumed>)       = 0
[pid   583] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid   582] <... ioctl resumed>)        = 0
[pid   583] <... mmap resumed>)         = 0x7fb94d783000
[pid   582] close(4)                    = 0
[pid   582] exit_group(0 <unfinished ...>
[pid   585] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4
[pid   585] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   582] <... exit_group resumed>)   = ?
[pid   582] +++ exited with 0 +++
[pid   356] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=582, si_uid=0, si_status=0, si_utime=7, si_stime=24} ---
[pid   356] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid   583] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144./strace-static-x86_64: Process 607 attached
 <unfinished ...>
[pid   585] <... ioctl resumed>)        = 0
[pid   607] set_robust_list(0x55556caf1660, 24 <unfinished ...>
[pid   585] close(3)                    = 0
[pid   585] close(4 <unfinished ...>
[pid   607] <... set_robust_list resumed>) = 0
[pid   607] chdir("./8")                = 0
[pid   607] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   583] <... write resumed>)        = 262144
[pid   607] setpgid(0, 0)               = 0
[pid   583] munmap(0x7fb94d783000, 138412032 <unfinished ...>
[pid   607] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid   583] <... munmap resumed>)       = 0
[pid   607] <... openat resumed>)       = 3
[pid   583] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   607] write(3, "1000", 4)         = 4
[pid   607] close(3)                    = 0
[pid   356] <... restart_syscall resumed>) = 0
[pid   607] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid   356] umount2("./7", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   356] openat(AT_FDCWD, "./7", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   356] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   356] getdents64(3,  <unfinished ...>
[pid   607] <... symlink resumed>)      = 0
[pid   356] <... getdents64 resumed>0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   356] umount2("./7/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   356] newfstatat(AT_FDCWD, "./7/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   356] unlink("./7/binderfs")      = 0
[pid   356] umount2("./7/bus", MNT_FORCE|UMOUNT_NOFOLLOWexecuting program
 <unfinished ...>
[pid   607] write(1, "executing program\n", 18) = 18
[pid   607] memfd_create("syzkaller", 0) = 3
[pid   607] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   585] <... close resumed>)        = 0
[pid   585] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[   32.837935][  T582] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[   32.854204][  T582] ext4 filesystem being mounted at /root/syzkaller.RLArfL/7/bus supports timestamps until (%ptR?) (0x7fffffff)
[pid   585] mount("/dev/loop1", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue") = 0
[pid   585] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   585] chdir("./bus")              = 0
[pid   585] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   607] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   583] <... openat resumed>)       = 4
[   32.918896][  T585] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue
[   32.928082][  T585] ext4 filesystem being mounted at /root/syzkaller.c2lmo2/7/bus supports timestamps until (%ptR?) (0x7fffffff)
[pid   583] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   607] <... write resumed>)        = 20699119
[pid   607] munmap(0x7fb94d783000, 138412032 <unfinished ...>
[pid   595] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   595] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   356] <... umount2 resumed>)      = 0
[pid   356] umount2("./7/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   583] <... ioctl resumed>)        = 0
[pid   356] newfstatat(AT_FDCWD, "./7/bus",  <unfinished ...>
[pid   595] <... openat resumed>)       = 3
[pid   595] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   583] close(3)                    = 0
[pid   583] close(4 <unfinished ...>
[pid   607] <... munmap resumed>)       = 0
[pid   356] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   356] umount2("./7/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   607] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   356] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   356] openat(AT_FDCWD, "./7/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   356] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   356] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   356] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   356] close(4)                    = 0
[pid   356] rmdir("./7/bus")            = 0
[pid   356] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   356] close(3)                    = 0
[pid   356] rmdir("./7")                = 0
[pid   356] mkdir("./8", 0777)          = 0
[pid   356] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   585] <... openat resumed>)       = 4
[pid   585] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid   583] <... close resumed>)        = 0
[pid   583] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[pid   583] mount("/dev/loop3", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   607] <... openat resumed>)       = 4
[pid   585] <... ioctl resumed>)        = 0
[pid   356] <... openat resumed>)       = 3
[pid   585] close(4 <unfinished ...>
[pid   356] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   585] <... close resumed>)        = 0
[pid   356] close(3 <unfinished ...>
[pid   585] exit_group(0 <unfinished ...>
[pid   356] <... close resumed>)        = 0
[pid   585] <... exit_group resumed>)   = ?
[pid   356] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid   607] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   356] <... clone resumed>, child_tidptr=0x55556caf1650) = 612
./strace-static-x86_64: Process 612 attached
[pid   612] set_robust_list(0x55556caf1660, 24 <unfinished ...>
[pid   585] +++ exited with 0 +++
[pid   612] <... set_robust_list resumed>) = 0
[pid   357] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=585, si_uid=0, si_status=0, si_utime=6, si_stime=26} ---
[pid   607] <... ioctl resumed>)        = 0
[pid   357] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid   607] close(3)                    = 0
[pid   607] close(4 <unfinished ...>
[pid   612] chdir("./8")                = 0
[pid   612] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   612] setpgid(0, 0)               = 0
[pid   612] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   612] write(3, "1000", 4)         = 4
[pid   612] close(3)                    = 0
[pid   612] symlink("/dev/binderfs", "./binderfs") = 0
[pid   612] write(1, "executing program\n", 18 <unfinished ...>
[pid   357] <... restart_syscall resumed>) = 0
executing program
[pid   612] <... write resumed>)        = 18
[pid   357] umount2("./7", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] openat(AT_FDCWD, "./7", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   357] newfstatat(3, "",  <unfinished ...>
[pid   612] memfd_create("syzkaller", 0 <unfinished ...>
[pid   357] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   357] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   612] <... memfd_create resumed>) = 3
[pid   357] umount2("./7/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   612] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid   357] newfstatat(AT_FDCWD, "./7/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   612] <... mmap resumed>)         = 0x7fb94d783000
[pid   357] unlink("./7/binderfs")      = 0
[pid   357] umount2("./7/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   607] <... close resumed>)        = 0
[pid   607] mkdir("./bus", 0777)        = 0
[pid   607] mount("/dev/loop2", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   583] <... mount resumed>)        = 0
[pid   583] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   583] chdir("./bus")              = 0
[pid   583] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4
[pid   357] <... umount2 resumed>)      = 0
[pid   583] ioctl(4, LOOP_CLR_FD)       = 0
[pid   357] umount2("./7/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   583] close(4 <unfinished ...>
[pid   357] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   583] <... close resumed>)        = 0
[pid   357] newfstatat(AT_FDCWD, "./7/bus",  <unfinished ...>
[pid   583] exit_group(0 <unfinished ...>
[pid   357] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   583] <... exit_group resumed>)   = ?
[pid   583] +++ exited with 0 +++
[pid   357] umount2("./7/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   359] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=583, si_uid=0, si_status=0, si_utime=7, si_stime=23} ---
[pid   357] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   359] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid   357] openat(AT_FDCWD, "./7/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   357] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   357] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[   33.179382][  T583] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[   33.203403][  T583] ext4 filesystem being mounted at /root/syzkaller.P1RtK2/7/bus supports timestamps until (%ptR?) (0x7fffffff)
[   33.215413][  T607] F2FS-fs (loop2): invalid crc value
[pid   357] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   357] close(4)                    = 0
[pid   357] rmdir("./7/bus")            = 0
[pid   357] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   357] close(3)                    = 0
[pid   357] rmdir("./7" <unfinished ...>
[pid   359] <... restart_syscall resumed>) = 0
[pid   357] <... rmdir resumed>)        = 0
[pid   357] mkdir("./8", 0777 <unfinished ...>
[pid   359] umount2("./7", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   359] openat(AT_FDCWD, "./7", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid   357] <... mkdir resumed>)        = 0
[pid   359] <... openat resumed>)       = 3
[pid   357] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   359] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   357] <... openat resumed>)       = 3
[pid   359] getdents64(3,  <unfinished ...>
[pid   357] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   359] <... getdents64 resumed>0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   357] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid   359] umount2("./7/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] close(3 <unfinished ...>
[pid   359] newfstatat(AT_FDCWD, "./7/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   357] <... close resumed>)        = 0
[pid   359] unlink("./7/binderfs" <unfinished ...>
[pid   357] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid   359] <... unlink resumed>)       = 0
[pid   359] umount2("./7/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   357] <... clone resumed>, child_tidptr=0x55556caf1650) = 617
./strace-static-x86_64: Process 617 attached
[pid   617] set_robust_list(0x55556caf1660, 24) = 0
[pid   617] chdir("./8")                = 0
[pid   617] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   617] setpgid(0, 0)               = 0
[pid   617] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   617] write(3, "1000", 4)         = 4
[pid   617] close(3)                    = 0
[pid   617] symlink("/dev/binderfs", "./binderfs") = 0
[pid   617] write(1, "executing program\n", 18executing program
) = 18
[pid   617] memfd_create("syzkaller", 0) = 3
[pid   617] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   359] <... umount2 resumed>)      = 0
[pid   359] umount2("./7/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   359] newfstatat(AT_FDCWD, "./7/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   359] umount2("./7/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   359] openat(AT_FDCWD, "./7/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   359] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   359] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   359] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   359] close(4)                    = 0
[pid   359] rmdir("./7/bus")            = 0
[pid   359] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   359] close(3)                    = 0
[pid   359] rmdir("./7")                = 0
[pid   359] mkdir("./8", 0777)          = 0
[pid   359] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3
[pid   359] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   359] close(3)                    = 0
[pid   359] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55556caf1650) = 618
[pid   595] <... ioctl resumed>)        = 0
./strace-static-x86_64: Process 618 attached
[pid   618] set_robust_list(0x55556caf1660, 24) = 0
[pid   618] chdir("./8")                = 0
[pid   618] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   618] setpgid(0, 0)               = 0
executing program
[pid   618] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   618] write(3, "1000", 4)         = 4
[pid   618] close(3)                    = 0
[pid   618] symlink("/dev/binderfs", "./binderfs") = 0
[pid   618] write(1, "executing program\n", 18) = 18
[pid   618] memfd_create("syzkaller", 0) = 3
[pid   618] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[   33.282980][  T607] F2FS-fs (loop2): recover fsync data on readonly fs
[   33.290434][  T607] F2FS-fs (loop2): Cannot turn on quotas: -2 on 0
[pid   595] close(3)                    = 0
[pid   595] memfd_create("syzkaller", 0) = 3
[pid   595] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   595] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144) = 262144
[pid   595] munmap(0x7fb94d783000, 138412032) = 0
[pid   595] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4
[pid   595] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid   595] close(3)                    = 0
[pid   595] close(4 <unfinished ...>
[   33.298680][  T607] F2FS-fs (loop2): checkpoint=disable on readonly fs
[pid   612] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   595] <... close resumed>)        = 0
[pid   595] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[pid   595] mount("/dev/loop4", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   618] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   595] <... mount resumed>)        = 0
[pid   595] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   595] chdir("./bus")              = 0
[pid   595] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   617] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   607] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   595] <... openat resumed>)       = 4
[pid   607] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   595] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid   607] <... openat resumed>)       = 3
[pid   595] <... ioctl resumed>)        = 0
[pid   607] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   595] close(4 <unfinished ...>
[pid   612] <... write resumed>)        = 20699119
[pid   612] munmap(0x7fb94d783000, 138412032) = 0
[   33.448378][  T595] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
[   33.470674][  T595] ext4 filesystem being mounted at /root/syzkaller.iU8IiS/7/bus supports timestamps until (%ptR?) (0x7fffffff)
[pid   612] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   595] <... close resumed>)        = 0
[pid   612] <... openat resumed>)       = 4
[pid   612] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   595] exit_group(0)               = ?
[pid   595] +++ exited with 0 +++
[pid   360] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=595, si_uid=0, si_status=0, si_utime=8, si_stime=24} ---
[pid   612] <... ioctl resumed>)        = 0
[pid   360] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid   612] close(3)                    = 0
[pid   612] close(4 <unfinished ...>
[pid   360] <... restart_syscall resumed>) = 0
[pid   617] <... write resumed>)        = 20699119
[pid   617] munmap(0x7fb94d783000, 138412032 <unfinished ...>
[pid   360] umount2("./7", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   360] openat(AT_FDCWD, "./7", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   360] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   360] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   360] umount2("./7/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   617] <... munmap resumed>)       = 0
[pid   360] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   617] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   360] newfstatat(AT_FDCWD, "./7/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   360] unlink("./7/binderfs")      = 0
[pid   360] umount2("./7/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   618] <... write resumed>)        = 20699119
[pid   618] munmap(0x7fb94d783000, 138412032) = 0
[pid   618] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   607] <... ioctl resumed>)        = 0
[pid   607] close(3 <unfinished ...>
[pid   617] <... openat resumed>)       = 4
[pid   612] <... close resumed>)        = 0
[pid   360] <... umount2 resumed>)      = 0
[pid   617] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   612] mkdir("./bus", 0777 <unfinished ...>
[pid   360] umount2("./7/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   612] <... mkdir resumed>)        = 0
[pid   360] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   612] mount("/dev/loop0", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   360] newfstatat(AT_FDCWD, "./7/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   360] umount2("./7/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   360] openat(AT_FDCWD, "./7/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   360] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   360] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   360] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   360] close(4)                    = 0
[pid   360] rmdir("./7/bus")            = 0
[pid   360] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   360] close(3)                    = 0
[pid   360] rmdir("./7")                = 0
[pid   360] mkdir("./8", 0777)          = 0
[pid   360] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   618] <... openat resumed>)       = 4
[pid   618] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   617] <... ioctl resumed>)        = 0
[pid   617] close(3)                    = 0
[pid   617] close(4 <unfinished ...>
[pid   618] <... ioctl resumed>)        = 0
[pid   618] close(3)                    = 0
[pid   618] close(4 <unfinished ...>
[pid   607] <... close resumed>)        = 0
[pid   607] memfd_create("syzkaller", 0) = 3
[pid   607] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid   360] <... openat resumed>)       = 3
[pid   607] <... mmap resumed>)         = 0x7fb94d783000
[pid   360] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   607] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 <unfinished ...>
[pid   617] <... close resumed>)        = 0
[pid   607] <... write resumed>)        = 262144
[pid   360] close(3 <unfinished ...>
[pid   617] mkdir("./bus", 0777)        = 0
[pid   617] mount("/dev/loop1", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   607] munmap(0x7fb94d783000, 138412032) = 0
[pid   607] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   618] <... close resumed>)        = 0
[pid   360] <... close resumed>)        = 0
[pid   618] mkdir("./bus", 0777 <unfinished ...>
[pid   360] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid   618] <... mkdir resumed>)        = 0
[   33.761596][  T612] F2FS-fs (loop0): invalid crc value
[   33.795050][  T617] F2FS-fs (loop1): invalid crc value
[pid   618] mount("/dev/loop3", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   360] <... clone resumed>, child_tidptr=0x55556caf1650) = 626
./strace-static-x86_64: Process 626 attached
[pid   607] <... openat resumed>)       = 4
[pid   626] set_robust_list(0x55556caf1660, 24 <unfinished ...>
[pid   607] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   626] <... set_robust_list resumed>) = 0
[pid   607] <... ioctl resumed>)        = 0
[pid   626] chdir("./8" <unfinished ...>
[pid   607] close(3 <unfinished ...>
[pid   626] <... chdir resumed>)        = 0
[pid   607] <... close resumed>)        = 0
[pid   626] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid   607] close(4 <unfinished ...>
[pid   626] <... prctl resumed>)        = 0
[pid   626] setpgid(0, 0 <unfinished ...>
[pid   607] <... close resumed>)        = 0
[pid   626] <... setpgid resumed>)      = 0
[pid   607] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[pid   626] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid   607] mount("/dev/loop2", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   626] <... openat resumed>)       = 3
[pid   626] write(3, "1000", 4)         = 4
[pid   626] close(3)                    = 0
[pid   626] symlink("/dev/binderfs", "./binderfs"executing program
) = 0
[pid   626] write(1, "executing program\n", 18) = 18
[pid   626] memfd_create("syzkaller", 0) = 3
[pid   626] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[   33.810416][  T612] F2FS-fs (loop0): recover fsync data on readonly fs
[   33.811191][  T618] F2FS-fs (loop3): invalid crc value
[   33.817511][  T612] F2FS-fs (loop0): Cannot turn on quotas: -2 on 0
[   33.829832][  T612] F2FS-fs (loop0): checkpoint=disable on readonly fs
[pid   607] <... mount resumed>)        = 0
[pid   607] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   607] chdir("./bus")              = 0
[pid   607] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4
[pid   607] ioctl(4, LOOP_CLR_FD)       = 0
[pid   607] close(4)                    = 0
[   33.866667][  T607] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue
[   33.886340][  T607] ext4 filesystem being mounted at /root/syzkaller.aDc6zi/8/bus supports timestamps until (%ptR?) (0x7fffffff)
[   33.907938][  T617] F2FS-fs (loop1): recover fsync data on readonly fs
[pid   607] exit_group(0)               = ?
[pid   607] +++ exited with 0 +++
[pid   358] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=607, si_uid=0, si_status=0, si_utime=5, si_stime=21} ---
[pid   358] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   358] umount2("./8", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   358] openat(AT_FDCWD, "./8", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   358] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   358] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   358] umount2("./8/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   358] newfstatat(AT_FDCWD, "./8/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   358] unlink("./8/binderfs")      = 0
[pid   358] umount2("./8/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   358] umount2("./8/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   358] newfstatat(AT_FDCWD, "./8/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   358] umount2("./8/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   358] openat(AT_FDCWD, "./8/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   358] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   358] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   358] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   358] close(4)                    = 0
[pid   358] rmdir("./8/bus")            = 0
[pid   358] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   358] close(3)                    = 0
[pid   358] rmdir("./8")                = 0
[   33.921798][  T617] F2FS-fs (loop1): Cannot turn on quotas: -2 on 0
[   33.930333][  T618] F2FS-fs (loop3): recover fsync data on readonly fs
[   33.937450][  T617] F2FS-fs (loop1): checkpoint=disable on readonly fs
[   33.944581][  T618] F2FS-fs (loop3): Cannot turn on quotas: -2 on 0
[   33.953271][  T618] F2FS-fs (loop3): checkpoint=disable on readonly fs
[pid   358] mkdir("./9", 0777)          = 0
[pid   358] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   626] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119) = 20699119
[pid   626] munmap(0x7fb94d783000, 138412032) = 0
[pid   626] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   612] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   626] <... openat resumed>)       = 4
[pid   626] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   612] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   358] <... openat resumed>)       = 3
[pid   612] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   358] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   626] <... ioctl resumed>)        = 0
[pid   626] close(3)                    = 0
[pid   626] close(4 <unfinished ...>
[pid   358] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid   358] close(3)                    = 0
[pid   358] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55556caf1650) = 634
./strace-static-x86_64: Process 634 attached
[pid   634] set_robust_list(0x55556caf1660, 24) = 0
[pid   634] chdir("./9")                = 0
[pid   634] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   634] setpgid(0, 0)               = 0
[pid   634] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   634] write(3, "1000", 4)         = 4
[pid   634] close(3)                    = 0
[pid   634] symlink("/dev/binderfs", "./binderfs"executing program
) = 0
[pid   634] write(1, "executing program\n", 18) = 18
[pid   634] memfd_create("syzkaller", 0) = 3
[pid   634] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   617] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   617] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   626] <... close resumed>)        = 0
[pid   626] mkdir("./bus", 0777)        = 0
[pid   626] mount("/dev/loop4", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   612] <... ioctl resumed>)        = 0
[pid   612] close(3 <unfinished ...>
[pid   634] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   618] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   618] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3
[pid   617] <... openat resumed>)       = 3
[pid   612] <... close resumed>)        = 0
[pid   618] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   617] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   612] memfd_create("syzkaller", 0) = 3
[pid   612] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   612] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144) = 262144
[pid   612] munmap(0x7fb94d783000, 138412032) = 0
[pid   612] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   634] <... write resumed>)        = 20699119
[pid   634] munmap(0x7fb94d783000, 138412032) = 0
[pid   634] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   612] <... openat resumed>)       = 4
[pid   634] <... openat resumed>)       = 4
[pid   618] <... ioctl resumed>)        = 0
[pid   634] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   618] close(3 <unfinished ...>
[pid   634] <... ioctl resumed>)        = 0
[pid   634] close(3)                    = 0
[pid   634] close(4 <unfinished ...>
[pid   612] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   634] <... close resumed>)        = 0
[pid   618] <... close resumed>)        = 0
[pid   634] mkdir("./bus", 0777 <unfinished ...>
[pid   618] memfd_create("syzkaller", 0 <unfinished ...>
[pid   634] <... mkdir resumed>)        = 0
[pid   618] <... memfd_create resumed>) = 3
[pid   618] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   618] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 <unfinished ...>
[pid   634] mount("/dev/loop2", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   618] <... write resumed>)        = 262144
[pid   618] munmap(0x7fb94d783000, 138412032) = 0
[pid   618] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   612] <... ioctl resumed>)        = 0
[pid   612] close(3)                    = 0
[pid   612] close(4)                    = 0
[pid   612] mkdir("./bus", 0777 <unfinished ...>
[pid   618] <... openat resumed>)       = 4
[pid   612] <... mkdir resumed>)        = -1 EEXIST (File exists)
[pid   618] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[   34.314749][  T626] F2FS-fs (loop4): invalid crc value
[pid   612] mount("/dev/loop0", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   618] <... ioctl resumed>)        = 0
[pid   618] close(3)                    = 0
[pid   618] close(4 <unfinished ...>
[pid   617] <... ioctl resumed>)        = 0
[   34.358905][  T634] F2FS-fs (loop2): invalid crc value
[pid   617] close(3 <unfinished ...>
[pid   618] <... close resumed>)        = 0
[pid   618] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[pid   618] mount("/dev/loop3", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   612] <... mount resumed>)        = 0
[   34.389232][  T612] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[   34.391929][  T626] F2FS-fs (loop4): recover fsync data on readonly fs
[   34.405663][  T612] ext4 filesystem being mounted at /root/syzkaller.RLArfL/8/bus supports timestamps until (%ptR?) (0x7fffffff)
[   34.406176][  T626] F2FS-fs (loop4): Cannot turn on quotas: -2 on 0
[   34.431774][  T626] F2FS-fs (loop4): checkpoint=disable on readonly fs
[pid   612] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   612] chdir("./bus")              = 0
[pid   612] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   617] <... close resumed>)        = 0
[pid   612] <... openat resumed>)       = 4
[pid   617] memfd_create("syzkaller", 0 <unfinished ...>
[pid   612] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid   617] <... memfd_create resumed>) = 3
[pid   612] <... ioctl resumed>)        = 0
[pid   617] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid   612] close(4 <unfinished ...>
[pid   617] <... mmap resumed>)         = 0x7fb94d783000
[pid   612] <... close resumed>)        = 0
[pid   612] exit_group(0)               = ?
[pid   612] +++ exited with 0 +++
[pid   617] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 <unfinished ...>
[pid   356] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=612, si_uid=0, si_status=0, si_utime=6, si_stime=27} ---
[pid   356] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid   617] <... write resumed>)        = 262144
[pid   617] munmap(0x7fb94d783000, 138412032) = 0
[pid   617] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4
[pid   617] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid   356] <... restart_syscall resumed>) = 0
[pid   356] umount2("./8", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   617] close(3 <unfinished ...>
[pid   356] openat(AT_FDCWD, "./8", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid   617] <... close resumed>)        = 0
[pid   356] <... openat resumed>)       = 3
[pid   617] close(4 <unfinished ...>
[pid   356] newfstatat(3, "",  <unfinished ...>
[pid   617] <... close resumed>)        = 0
[pid   356] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   617] mkdir("./bus", 0777 <unfinished ...>
[pid   356] getdents64(3,  <unfinished ...>
[pid   617] <... mkdir resumed>)        = -1 EEXIST (File exists)
[pid   356] <... getdents64 resumed>0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   617] mount("/dev/loop1", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   356] umount2("./8/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   356] newfstatat(AT_FDCWD, "./8/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   356] unlink("./8/binderfs")      = 0
[pid   356] umount2("./8/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[   34.435976][  T634] F2FS-fs (loop2): recover fsync data on readonly fs
[   34.445980][  T634] F2FS-fs (loop2): Cannot turn on quotas: -2 on 0
[   34.452950][  T634] F2FS-fs (loop2): checkpoint=disable on readonly fs
[pid   356] umount2("./8/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   356] newfstatat(AT_FDCWD, "./8/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   356] umount2("./8/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   356] openat(AT_FDCWD, "./8/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   618] <... mount resumed>)        = 0
[pid   356] newfstatat(4, "",  <unfinished ...>
[pid   618] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   356] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   618] chdir("./bus" <unfinished ...>
[pid   356] getdents64(4,  <unfinished ...>
[pid   618] <... chdir resumed>)        = 0
[pid   356] <... getdents64 resumed>0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   356] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   618] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   356] close(4)                    = 0
[pid   356] rmdir("./8/bus")            = 0
[pid   356] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   356] close(3)                    = 0
[pid   356] rmdir("./8")                = 0
[pid   356] mkdir("./9", 0777)          = 0
[pid   356] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   617] <... mount resumed>)        = 0
[pid   617] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   617] chdir("./bus")              = 0
[pid   617] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   618] <... openat resumed>)       = 4
[pid   356] <... openat resumed>)       = 3
[pid   617] <... openat resumed>)       = 4
[pid   617] ioctl(4, LOOP_CLR_FD)       = 0
[pid   617] close(4 <unfinished ...>
[pid   618] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid   617] <... close resumed>)        = 0
[pid   356] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   618] <... ioctl resumed>)        = 0
[pid   356] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid   618] close(4 <unfinished ...>
[pid   356] close(3 <unfinished ...>
[pid   618] <... close resumed>)        = 0
[pid   356] <... close resumed>)        = 0
[pid   618] exit_group(0 <unfinished ...>
[pid   356] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 647 attached
 <unfinished ...>
[pid   618] <... exit_group resumed>)   = ?
[pid   617] exit_group(0)               = ?
[pid   618] +++ exited with 0 +++
[pid   617] +++ exited with 0 +++
[pid   356] <... clone resumed>, child_tidptr=0x55556caf1650) = 647
[pid   359] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=618, si_uid=0, si_status=0, si_utime=6, si_stime=30} ---
[pid   357] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=617, si_uid=0, si_status=0, si_utime=7, si_stime=27} ---
[pid   359] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid   357] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid   359] <... restart_syscall resumed>) = 0
[pid   359] umount2("./8", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   359] openat(AT_FDCWD, "./8", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   359] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   359] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   647] set_robust_list(0x55556caf1660, 24 <unfinished ...>
[pid   359] umount2("./8/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   359] newfstatat(AT_FDCWD, "./8/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   359] unlink("./8/binderfs")      = 0
[pid   359] umount2("./8/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   647] <... set_robust_list resumed>) = 0
[pid   647] chdir("./9")                = 0
[pid   647] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[   34.495427][  T618] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[   34.505767][  T618] ext4 filesystem being mounted at /root/syzkaller.P1RtK2/8/bus supports timestamps until (%ptR?) (0x7fffffff)
[   34.521312][  T617] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue
[   34.531282][  T617] ext4 filesystem being mounted at /root/syzkaller.c2lmo2/8/bus supports timestamps until (%ptR?) (0x7fffffff)
[pid   647] setpgid(0, 0)               = 0
[pid   647] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   626] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   359] <... umount2 resumed>)      = 0
[pid   626] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   647] write(3, "1000", 4 <unfinished ...>
[pid   359] umount2("./8/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   359] newfstatat(AT_FDCWD, "./8/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   359] umount2("./8/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   359] openat(AT_FDCWD, "./8/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   359] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   359] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   359] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   359] close(4)                    = 0
[pid   359] rmdir("./8/bus")            = 0
[pid   359] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   359] close(3)                    = 0
[pid   359] rmdir("./8")                = 0
[pid   647] <... write resumed>)        = 4
[pid   359] mkdir("./9", 0777 <unfinished ...>
[pid   357] <... restart_syscall resumed>) = 0
[pid   357] umount2("./8", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] openat(AT_FDCWD, "./8", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid   359] <... mkdir resumed>)        = 0
[pid   357] <... openat resumed>)       = 3
[pid   357] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   357] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   357] umount2("./8/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] newfstatat(AT_FDCWD, "./8/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   357] unlink("./8/binderfs")      = 0
[pid   359] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   357] umount2("./8/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   647] close(3)                    = 0
[pid   647] symlink("/dev/binderfs", "./binderfs") = 0
[pid   647] write(1, "executing program\n", 18executing program
) = 18
[pid   647] memfd_create("syzkaller", 0) = 3
[pid   647] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   626] <... openat resumed>)       = 3
[pid   359] <... openat resumed>)       = 3
[pid   626] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   359] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   647] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119) = 20699119
[pid   647] munmap(0x7fb94d783000, 138412032) = 0
[pid   647] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   634] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   634] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   647] <... openat resumed>)       = 4
[pid   359] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid   357] <... umount2 resumed>)      = 0
[pid   647] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   359] close(3 <unfinished ...>
[pid   634] <... openat resumed>)       = 3
[pid   359] <... close resumed>)        = 0
[pid   357] umount2("./8/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   634] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   359] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid   357] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   357] newfstatat(AT_FDCWD, "./8/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   359] <... clone resumed>, child_tidptr=0x55556caf1650) = 649
[pid   357] umount2("./8/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] openat(AT_FDCWD, "./8/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   357] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   357] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   357] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   357] close(4)                    = 0
[pid   357] rmdir("./8/bus")            = 0
[pid   357] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   357] close(3)                    = 0
[pid   357] rmdir("./8")                = 0
[pid   357] mkdir("./9", 0777)          = 0
[pid   357] openat(AT_FDCWD, "/dev/loop1", O_RDWR./strace-static-x86_64: Process 649 attached
 <unfinished ...>
[pid   647] <... ioctl resumed>)        = 0
[pid   649] set_robust_list(0x55556caf1660, 24 <unfinished ...>
[pid   647] close(3 <unfinished ...>
[pid   649] <... set_robust_list resumed>) = 0
[pid   647] <... close resumed>)        = 0
[pid   647] close(4 <unfinished ...>
[pid   649] chdir("./9")                = 0
[pid   649] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   649] setpgid(0, 0)               = 0
[pid   649] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   649] write(3, "1000", 4)         = 4
[pid   649] close(3)                    = 0
[pid   649] symlink("/dev/binderfs", "./binderfs") = 0
[pid   649] write(1, "executing program\n", 18executing program
) = 18
[pid   649] memfd_create("syzkaller", 0) = 3
[pid   649] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   357] <... openat resumed>)       = 3
[pid   357] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   357] close(3)                    = 0
[pid   357] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55556caf1650) = 650
[pid   647] <... close resumed>)        = 0
[pid   647] mkdir("./bus", 0777)        = 0
[pid   647] mount("/dev/loop0", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"..../strace-static-x86_64: Process 650 attached
 <unfinished ...>
[pid   650] set_robust_list(0x55556caf1660, 24) = 0
[pid   650] chdir("./9")                = 0
[pid   650] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   650] setpgid(0, 0)               = 0
[pid   650] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   650] write(3, "1000", 4)         = 4
[pid   650] close(3)                    = 0
[pid   650] symlink("/dev/binderfs", "./binderfs") = 0
[pid   650] write(1, "executing program\n", 18executing program
) = 18
[pid   650] memfd_create("syzkaller", 0) = 3
[pid   650] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   626] <... ioctl resumed>)        = 0
[pid   626] close(3)                    = 0
[pid   626] memfd_create("syzkaller", 0) = 3
[pid   626] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   626] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144) = 262144
[pid   626] munmap(0x7fb94d783000, 138412032) = 0
[pid   626] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4
[   34.852832][  T647] F2FS-fs (loop0): invalid crc value
[pid   626] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid   626] close(3)                    = 0
[pid   626] close(4)                    = 0
[pid   626] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[pid   626] mount("/dev/loop4", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   634] <... ioctl resumed>)        = 0
[pid   634] close(3)                    = 0
[pid   626] <... mount resumed>)        = 0
[pid   634] memfd_create("syzkaller", 0 <unfinished ...>
[pid   626] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid   634] <... memfd_create resumed>) = 3
[pid   626] <... openat resumed>)       = 3
[pid   634] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid   626] chdir("./bus" <unfinished ...>
[pid   634] <... mmap resumed>)         = 0x7fb94d783000
[pid   626] <... chdir resumed>)        = 0
[pid   634] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 <unfinished ...>
[pid   626] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   634] <... write resumed>)        = 262144
[pid   634] munmap(0x7fb94d783000, 138412032 <unfinished ...>
[pid   626] <... openat resumed>)       = 4
[pid   634] <... munmap resumed>)       = 0
[pid   626] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid   634] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   626] <... ioctl resumed>)        = 0
[pid   634] <... openat resumed>)       = 4
[pid   626] close(4 <unfinished ...>
[pid   634] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   626] <... close resumed>)        = 0
[pid   649] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   626] exit_group(0)               = ?
[pid   626] +++ exited with 0 +++
[pid   360] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=626, si_uid=0, si_status=0, si_utime=5, si_stime=27} ---
[   34.973945][  T626] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
[   34.974053][  T647] F2FS-fs (loop0): recover fsync data on readonly fs
[   34.990802][  T626] ext4 filesystem being mounted at /root/syzkaller.iU8IiS/8/bus supports timestamps until (%ptR?) (0x7fffffff)
[   35.007079][  T647] F2FS-fs (loop0): Cannot turn on quotas: -2 on 0
[pid   360] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   634] <... ioctl resumed>)        = 0
[pid   634] close(3)                    = 0
[pid   634] close(4 <unfinished ...>
[pid   360] umount2("./8", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   634] <... close resumed>)        = 0
[pid   360] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   360] openat(AT_FDCWD, "./8", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   360] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   360] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   360] umount2("./8/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   360] newfstatat(AT_FDCWD, "./8/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   360] unlink("./8/binderfs")      = 0
[pid   360] umount2("./8/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   634] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[pid   634] mount("/dev/loop2", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[   35.029229][  T647] F2FS-fs (loop0): checkpoint=disable on readonly fs
[pid   650] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   360] <... umount2 resumed>)      = 0
[pid   360] umount2("./8/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   360] newfstatat(AT_FDCWD, "./8/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   360] umount2("./8/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   360] openat(AT_FDCWD, "./8/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   360] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   360] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   360] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   360] close(4)                    = 0
[pid   360] rmdir("./8/bus")            = 0
[pid   360] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   360] close(3)                    = 0
[pid   360] rmdir("./8")                = 0
[pid   360] mkdir("./9", 0777)          = 0
[pid   360] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3
[pid   360] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   360] close(3)                    = 0
[pid   360] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55556caf1650) = 658
./strace-static-x86_64: Process 658 attached
[pid   658] set_robust_list(0x55556caf1660, 24) = 0
[pid   658] chdir("./9")                = 0
[pid   658] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid   649] <... write resumed>)        = 20699119
[pid   649] munmap(0x7fb94d783000, 138412032) = 0
[pid   649] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4
[   35.128024][  T634] ==================================================================
[   35.136371][  T634] BUG: KASAN: use-after-free in __ext4_iget+0x384/0x4330
[   35.143432][  T634] Read of size 8 at addr ffff8881dcf92ad0 by task syz-executor300/634
[   35.151489][  T634] 
[   35.153694][  T634] CPU: 1 PID: 634 Comm: syz-executor300 Not tainted 5.4.290-syzkaller-00017-g6b07fcd94a6a #0
[   35.163654][  T634] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   35.173538][  T634] Call Trace:
[pid   649] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   650] <... write resumed>)        = 20699119
[pid   650] munmap(0x7fb94d783000, 138412032) = 0
[pid   650] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   658] <... prctl resumed>)        = 0
[pid   658] setpgid(0, 0)               = 0
[pid   658] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   658] write(3, "1000", 4)         = 4
[pid   658] close(3)                    = 0
[pid   658] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   658] write(1, "executing program\n", 18) = 18
[pid   658] memfd_create("syzkaller", 0) = 3
[pid   658] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[   35.176793][  T634]  dump_stack+0x1d8/0x241
[   35.180952][  T634]  ? nf_ct_l4proto_log_invalid+0x258/0x258
[   35.186700][  T634]  ? printk+0xd1/0x111
[   35.190611][  T634]  ? __ext4_iget+0x384/0x4330
[   35.195190][  T634]  print_address_description+0x8c/0x600
[   35.200577][  T634]  ? _raw_spin_lock+0xa4/0x1b0
[   35.205167][  T634]  ? _raw_spin_trylock_bh+0x190/0x190
[   35.210382][  T634]  ? __ext4_iget+0x384/0x4330
[   35.214899][  T634]  __kasan_report+0xf3/0x120
[   35.219323][  T634]  ? __ext4_iget+0x384/0x4330
[   35.223828][  T634]  kasan_report+0x30/0x60
[   35.228098][  T634]  __ext4_iget+0x384/0x4330
[   35.232441][  T634]  ? idr_replace+0x230/0x230
[   35.236864][  T634]  ? ext4_get_projid+0x140/0x140
[   35.241635][  T634]  ? _raw_write_lock+0xa4/0x170
[   35.246325][  T634]  ? __proc_create+0x65a/0xa00
[   35.251113][  T634]  ext4_enable_quotas+0x528/0x940
[   35.255971][  T634]  ? ext4_fill_flex_info+0x5e0/0x5e0
[   35.261089][  T634]  ? proc_create+0x230/0x230
[   35.265518][  T634]  ? ext4_fill_flex_info+0x53b/0x5e0
[   35.270663][  T634]  ? ext4_register_sysfs+0x1d9/0x210
[   35.275767][  T634]  ext4_fill_super+0x84f0/0x8d90
[   35.280550][  T634]  ? ext4_mount+0x40/0x40
[   35.284744][  T634]  ? vscnprintf+0x80/0x80
[   35.288902][  T634]  mount_bdev+0x267/0x370
[   35.293133][  T634]  ? ext4_mount+0x40/0x40
[   35.297304][  T634]  legacy_get_tree+0xdf/0x170
[   35.301812][  T634]  ? ext4_lazyinit_thread+0xc60/0xc60
[   35.307014][  T634]  vfs_get_tree+0x85/0x260
[   35.311360][  T634]  do_new_mount+0x292/0x570
[   35.315692][  T634]  ? do_move_mount_old+0x160/0x160
[   35.320638][  T634]  ? security_capable+0x86/0xb0
[pid   658] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119) = 20699119
[   35.325339][  T634]  do_mount+0x688/0xe10
[   35.329323][  T634]  ? copy_mount_string+0x30/0x30
[   35.334095][  T634]  ? copy_mount_options+0x29a/0x300
[   35.339346][  T634]  ksys_mount+0xc2/0xf0
[   35.343345][  T634]  __x64_sys_mount+0xb1/0xc0
[   35.347769][  T634]  do_syscall_64+0xca/0x1c0
[   35.352104][  T634]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[   35.357908][  T634] RIP: 0033:0x7fb955bc38da
[   35.362161][  T634] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 5e 04 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   35.382050][  T634] RSP: 002b:00007ffdf3906f98 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[   35.390486][  T634] RAX: ffffffffffffffda RBX: 00007ffdf3906ff0 RCX: 00007fb955bc38da
[   35.398288][  T634] RDX: 0000400000000180 RSI: 0000400000000000 RDI: 00007ffdf3906ff0
[   35.406108][  T634] RBP: 0000400000000000 R08: 00007ffdf3907030 R09: 00000000000004fb
[   35.414080][  T634] R10: 000000000021081e R11: 0000000000000206 R12: 0000400000000180
[   35.421983][  T634] R13: 00007ffdf3907030 R14: 0000000000000501 R15: 00004000000001c0
[   35.430059][  T634] 
[   35.432582][  T634] Allocated by task 450:
[   35.436663][  T634]  __kasan_kmalloc+0x171/0x210
[   35.441337][  T634]  kmem_cache_alloc+0xd9/0x250
[   35.445936][  T634]  f2fs_alloc_inode+0x22/0x3c0
[   35.450534][  T634]  iget_locked+0x143/0x790
[   35.454788][  T634]  f2fs_iget+0x52/0x4cf0
[   35.458874][  T634]  f2fs_fill_super+0x6909/0x8330
[   35.463790][  T634]  mount_bdev+0x267/0x370
[   35.467938][  T634]  legacy_get_tree+0xdf/0x170
[   35.472439][  T634]  vfs_get_tree+0x85/0x260
[   35.476689][  T634]  do_new_mount+0x292/0x570
[   35.481029][  T634]  do_mount+0x688/0xe10
[   35.485107][  T634]  ksys_mount+0xc2/0xf0
[   35.489534][  T634]  __x64_sys_mount+0xb1/0xc0
[   35.493970][  T634]  do_syscall_64+0xca/0x1c0
[   35.498436][  T634]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[   35.504111][  T634] 
[   35.506289][  T634] Freed by task 10:
[   35.509931][  T634]  __kasan_slab_free+0x1b5/0x270
[   35.514712][  T634]  kmem_cache_free+0x10b/0x2c0
[   35.519401][  T634]  rcu_do_batch+0x492/0xa00
[   35.523737][  T634]  rcu_core+0x4c8/0xcb0
[   35.527724][  T634]  __do_softirq+0x23b/0x6b7
[   35.532092][  T634] 
[   35.534246][  T634] The buggy address belongs to the object at ffff8881dcf92610
[   35.534246][  T634]  which belongs to the cache f2fs_inode_cache of size 1264
[   35.548657][  T634] The buggy address is located 1216 bytes inside of
[   35.548657][  T634]  1264-byte region [ffff8881dcf92610, ffff8881dcf92b00)
[   35.562015][  T634] The buggy address belongs to the page:
[   35.567507][  T634] page:ffffea000773e400 refcount:1 mapcount:0 mapping:ffff8881f0fcc500 index:0xffff8881dcf90570 compound_mapcount: 0
[   35.579656][  T634] flags: 0x8000000000010200(slab|head)
[   35.585044][  T634] raw: 8000000000010200 0000000000000000 0000000100000001 ffff8881f0fcc500
[   35.593560][  T634] raw: ffff8881dcf90570 0000000080170011 00000001ffffffff 0000000000000000
[   35.601960][  T634] page dumped because: kasan: bad access detected
[   35.608212][  T634] page_owner tracks the page as allocated
[   35.613772][  T634] page last allocated via order 3, migratetype Reclaimable, gfp_mask 0xd2050(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_RECLAIMABLE)
[   35.629746][  T634]  prep_new_page+0x18f/0x370
[   35.634791][  T634]  get_page_from_freelist+0x2d13/0x2d90
[   35.640162][  T634]  __alloc_pages_nodemask+0x393/0x840
[   35.645367][  T634]  alloc_slab_page+0x39/0x3c0
[   35.649940][  T634]  new_slab+0x97/0x440
[   35.653781][  T634]  ___slab_alloc+0x2fe/0x490
[   35.658208][  T634]  __slab_alloc+0x62/0xa0
[   35.662372][  T634]  kmem_cache_alloc+0x109/0x250
[   35.667066][  T634]  f2fs_alloc_inode+0x22/0x3c0
[   35.671659][  T634]  iget_locked+0x143/0x790
[   35.675918][  T634]  f2fs_iget+0x52/0x4cf0
[   35.680169][  T634]  f2fs_fill_super+0x4d1b/0x8330
[   35.684939][  T634]  mount_bdev+0x267/0x370
[   35.689107][  T634]  legacy_get_tree+0xdf/0x170
[   35.693629][  T634]  vfs_get_tree+0x85/0x260
[   35.697875][  T634]  do_new_mount+0x292/0x570
[   35.702211][  T634] page_owner free stack trace missing
[   35.707421][  T634] 
[   35.709587][  T634] Memory state around the buggy address:
[   35.715155][  T634]  ffff8881dcf92980: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[pid   658] munmap(0x7fb94d783000, 138412032 <unfinished ...>
[pid   650] <... openat resumed>)       = 4
[pid   649] <... ioctl resumed>)        = 0
[pid   650] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   649] close(3)                    = 0
[pid   649] close(4 <unfinished ...>
[pid   658] <... munmap resumed>)       = 0
[   35.723065][  T634]  ffff8881dcf92a00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   35.731044][  T634] >ffff8881dcf92a80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   35.738935][  T634]                                                  ^
[   35.745448][  T634]  ffff8881dcf92b00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   35.753344][  T634]  ffff8881dcf92b80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   35.761245][  T634] ==================================================================
[   35.769142][  T634] Disabling lock debugging due to kernel taint
[pid   658] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   650] <... ioctl resumed>)        = 0
[pid   649] <... close resumed>)        = 0
[pid   649] mkdir("./bus", 0777)        = 0
[pid   650] close(3)                    = 0
[pid   650] close(4 <unfinished ...>
[pid   658] <... openat resumed>)       = 4
[pid   649] mount("/dev/loop3", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   658] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   650] <... close resumed>)        = 0
[pid   650] mkdir("./bus", 0777)        = 0
[pid   650] mount("/dev/loop1", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   658] <... ioctl resumed>)        = 0
[pid   658] close(3)                    = 0
[   35.779933][  T634] EXT4-fs warning (device loop2): ext4_enable_quotas:6100: Failed to enable quota tracking (type=0, err=-13, ino=3). Please run e2fsck to fix.
[   35.795342][  T634] EXT4-fs (loop2): mount failed
[   35.802194][  T649] F2FS-fs (loop3): invalid crc value
[pid   658] close(4)                    = 0
[pid   658] mkdir("./bus", 0777)        = 0
[   35.833630][  T649] F2FS-fs (loop3): recover fsync data on readonly fs
[   35.840283][  T649] F2FS-fs (loop3): Cannot turn on quotas: -2 on 0
[   35.846841][  T649] F2FS-fs (loop3): checkpoint=disable on readonly fs
[pid   658] mount("/dev/loop4", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   634] <... mount resumed>)        = -1 EACCES (Permission denied)
[pid   634] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   647] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   634] <... openat resumed>)       = 3
[pid   647] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   634] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   649] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   649] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3
[pid   647] <... openat resumed>)       = 3
[pid   649] ioctl(3, LOOP_CLR_FD <unfinished ...>
[   36.002971][  T658] F2FS-fs (loop4): invalid crc value
[   36.028600][  T658] F2FS-fs (loop4): recover fsync data on readonly fs
[   36.036069][  T658] F2FS-fs (loop4): Cannot turn on quotas: -2 on 0
[   36.042705][  T658] F2FS-fs (loop4): checkpoint=disable on readonly fs
[   36.066130][  T650] F2FS-fs (loop1): invalid crc value
[   36.091993][  T650] F2FS-fs (loop1): recover fsync data on readonly fs
[   36.098958][  T650] F2FS-fs (loop1): Cannot turn on quotas: -2 on 0
[   36.105512][  T650] F2FS-fs (loop1): checkpoint=disable on readonly fs
[pid   647] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   658] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   658] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3
[pid   650] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   634] <... ioctl resumed>)        = 0
[pid   658] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   650] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   634] close(3 <unfinished ...>
[pid   650] <... openat resumed>)       = 3
[pid   634] <... close resumed>)        = 0
[pid   650] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   634] exit_group(0 <unfinished ...>
[pid   650] <... ioctl resumed>)        = 0
[pid   634] <... exit_group resumed>)   = ?
[pid   650] close(3 <unfinished ...>
[pid   634] +++ exited with 0 +++
[pid   650] <... close resumed>)        = 0
[pid   650] memfd_create("syzkaller", 0) = 3
[pid   358] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=634, si_uid=0, si_status=0, si_utime=7, si_stime=23} ---
[pid   650] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   650] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144) = 262144
[pid   650] munmap(0x7fb94d783000, 138412032) = 0
[pid   650] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   649] <... ioctl resumed>)        = 0
[pid   649] close(3 <unfinished ...>
[pid   358] umount2("./9", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   358] openat(AT_FDCWD, "./9", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   358] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   358] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   358] umount2("./9/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   358] newfstatat(AT_FDCWD, "./9/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   358] unlink("./9/binderfs")      = 0
[pid   358] umount2("./9/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   358] newfstatat(AT_FDCWD, "./9/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   358] umount2("./9/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   358] openat(AT_FDCWD, "./9/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   358] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   358] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   358] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   358] close(4)                    = 0
[pid   358] rmdir("./9/bus")            = 0
[pid   358] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   358] close(3)                    = 0
[pid   358] rmdir("./9")                = 0
[pid   358] mkdir("./10", 0777)         = 0
[pid   358] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   647] <... ioctl resumed>)        = 0
[pid   649] <... close resumed>)        = 0
[pid   358] <... openat resumed>)       = 3
[pid   650] <... openat resumed>)       = 4
[pid   649] memfd_create("syzkaller", 0 <unfinished ...>
[pid   647] close(3 <unfinished ...>
[pid   358] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   650] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   649] <... memfd_create resumed>) = 3
[pid   649] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   649] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144) = 262144
[pid   649] munmap(0x7fb94d783000, 138412032) = 0
[pid   649] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   650] <... ioctl resumed>)        = 0
[pid   649] <... openat resumed>)       = 4
[pid   647] <... close resumed>)        = 0
[pid   358] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid   650] close(3)                    = 0
[pid   650] close(4 <unfinished ...>
[pid   649] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   647] memfd_create("syzkaller", 0 <unfinished ...>
[pid   358] close(3 <unfinished ...>
[pid   647] <... memfd_create resumed>) = 3
[pid   647] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   647] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144) = 262144
[pid   647] munmap(0x7fb94d783000, 138412032) = 0
[pid   647] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   658] <... ioctl resumed>)        = 0
[pid   658] close(3 <unfinished ...>
[pid   650] <... close resumed>)        = 0
[pid   650] mkdir("./bus", 0777 <unfinished ...>
[pid   649] <... ioctl resumed>)        = 0
[pid   650] <... mkdir resumed>)        = -1 EEXIST (File exists)
[pid   649] close(3 <unfinished ...>
[pid   647] <... openat resumed>)       = 4
[pid   358] <... close resumed>)        = 0
[pid   650] mount("/dev/loop1", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   649] <... close resumed>)        = 0
[pid   647] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   649] close(4 <unfinished ...>
[pid   358] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid   647] <... ioctl resumed>)        = 0
[pid   658] <... close resumed>)        = 0
[pid   647] close(3 <unfinished ...>
[pid   658] memfd_create("syzkaller", 0 <unfinished ...>
[pid   358] <... clone resumed>, child_tidptr=0x55556caf1650) = 670
./strace-static-x86_64: Process 670 attached
[pid   658] <... memfd_create resumed>) = 3
[pid   647] <... close resumed>)        = 0
[pid   658] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   670] set_robust_list(0x55556caf1660, 24 <unfinished ...>
[pid   658] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 <unfinished ...>
[pid   647] close(4 <unfinished ...>
[pid   670] <... set_robust_list resumed>) = 0
[pid   658] <... write resumed>)        = 262144
[pid   658] munmap(0x7fb94d783000, 138412032) = 0
[pid   658] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   670] chdir("./10")               = 0
[pid   670] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   670] setpgid(0, 0)               = 0
[pid   670] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   670] write(3, "1000", 4)         = 4
[pid   670] close(3)                    = 0
[pid   670] symlink("/dev/binderfs", "./binderfs") = 0
[pid   670] write(1, "executing program\n", 18executing program
) = 18
[pid   670] memfd_create("syzkaller", 0) = 3
[pid   670] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   670] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   649] <... close resumed>)        = 0
[pid   649] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[pid   649] mount("/dev/loop3", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   670] <... write resumed>)        = 20699119
[pid   658] <... openat resumed>)       = 4
[pid   650] <... mount resumed>)        = 0
[pid   647] <... close resumed>)        = 0
[pid   670] munmap(0x7fb94d783000, 138412032 <unfinished ...>
[pid   658] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   647] mkdir("./bus", 0777 <unfinished ...>
[pid   670] <... munmap resumed>)       = 0
[pid   647] <... mkdir resumed>)        = -1 EEXIST (File exists)
[pid   670] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   650] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid   647] mount("/dev/loop0", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   658] <... ioctl resumed>)        = 0
[pid   658] close(3)                    = 0
[pid   658] close(4 <unfinished ...>
[pid   670] <... openat resumed>)       = 4
[pid   670] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid   670] close(3)                    = 0
[pid   670] close(4 <unfinished ...>
[pid   650] <... openat resumed>)       = 3
[pid   650] chdir("./bus")              = 0
[pid   650] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   649] <... mount resumed>)        = 0
[pid   649] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   649] chdir("./bus")              = 0
[pid   649] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   670] <... close resumed>)        = 0
[pid   670] mkdir("./bus", 0777)        = 0
[   36.529084][  T650] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue
[   36.538156][  T650] ext4 filesystem being mounted at /root/syzkaller.c2lmo2/9/bus supports timestamps until (%ptR?) (0x7fffffff)
[   36.539324][  T649] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[   36.563021][  T649] ext4 filesystem being mounted at /root/syzkaller.P1RtK2/9/bus supports timestamps until (%ptR?) (0x7fffffff)
[pid   670] mount("/dev/loop2", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   649] <... openat resumed>)       = 4
[pid   649] ioctl(4, LOOP_CLR_FD)       = 0
[pid   649] close(4)                    = 0
[pid   649] exit_group(0)               = ?
[pid   649] +++ exited with 0 +++
[pid   658] <... close resumed>)        = 0
[pid   658] mkdir("./bus", 0777 <unfinished ...>
[pid   650] <... openat resumed>)       = 4
[pid   658] <... mkdir resumed>)        = -1 EEXIST (File exists)
[pid   658] mount("/dev/loop4", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   650] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid   359] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=649, si_uid=0, si_status=0, si_utime=8, si_stime=25} ---
[pid   359] umount2("./9", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   359] openat(AT_FDCWD, "./9", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   359] newfstatat(3, "",  <unfinished ...>
[pid   650] <... ioctl resumed>)        = 0
[pid   359] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   650] close(4 <unfinished ...>
[pid   359] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   359] umount2("./9/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   359] newfstatat(AT_FDCWD, "./9/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   359] unlink("./9/binderfs")      = 0
[pid   359] umount2("./9/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   650] <... close resumed>)        = 0
[pid   650] exit_group(0)               = ?
[pid   650] +++ exited with 0 +++
[pid   357] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=650, si_uid=0, si_status=0, si_utime=4, si_stime=19} ---
[pid   357] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   357] umount2("./9", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] openat(AT_FDCWD, "./9", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   357] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   357] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   357] umount2("./9/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] newfstatat(AT_FDCWD, "./9/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   357] unlink("./9/binderfs")      = 0
[pid   357] umount2("./9/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   658] <... mount resumed>)        = 0
[pid   658] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   658] chdir("./bus")              = 0
[pid   658] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   647] <... mount resumed>)        = 0
[pid   647] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid   359] <... umount2 resumed>)      = 0
[pid   357] <... umount2 resumed>)      = 0
[pid   359] umount2("./9/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   357] umount2("./9/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   658] <... openat resumed>)       = 4
[pid   357] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   359] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   658] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid   357] newfstatat(AT_FDCWD, "./9/bus",  <unfinished ...>
[pid   658] <... ioctl resumed>)        = 0
[pid   647] <... openat resumed>)       = 3
[pid   359] newfstatat(AT_FDCWD, "./9/bus",  <unfinished ...>
[pid   357] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   658] close(4 <unfinished ...>
[pid   359] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   357] umount2("./9/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   658] <... close resumed>)        = 0
[pid   359] umount2("./9/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   357] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   658] exit_group(0 <unfinished ...>
[pid   359] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   357] openat(AT_FDCWD, "./9/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   359] openat(AT_FDCWD, "./9/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid   658] <... exit_group resumed>)   = ?
[pid   359] <... openat resumed>)       = 4
[pid   357] newfstatat(4, "",  <unfinished ...>
[pid   658] +++ exited with 0 +++
[pid   357] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   359] newfstatat(4, "",  <unfinished ...>
[pid   360] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=658, si_uid=0, si_status=0, si_utime=4, si_stime=26} ---
[pid   359] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   357] getdents64(4,  <unfinished ...>
[pid   647] chdir("./bus" <unfinished ...>
[pid   360] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid   359] getdents64(4,  <unfinished ...>
[pid   357] <... getdents64 resumed>0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   647] <... chdir resumed>)        = 0
[pid   359] <... getdents64 resumed>0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   357] getdents64(4,  <unfinished ...>
[pid   647] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   359] getdents64(4,  <unfinished ...>
[pid   357] <... getdents64 resumed>0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   647] <... openat resumed>)       = 4
[pid   359] <... getdents64 resumed>0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   359] close(4 <unfinished ...>
[pid   357] close(4 <unfinished ...>
[pid   647] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid   359] <... close resumed>)        = 0
[pid   357] <... close resumed>)        = 0
[pid   647] <... ioctl resumed>)        = 0
[pid   359] rmdir("./9/bus" <unfinished ...>
[pid   357] rmdir("./9/bus" <unfinished ...>
[pid   360] <... restart_syscall resumed>) = 0
[pid   359] <... rmdir resumed>)        = 0
[pid   357] <... rmdir resumed>)        = 0
[pid   647] close(4 <unfinished ...>
[pid   359] getdents64(3,  <unfinished ...>
[pid   357] getdents64(3,  <unfinished ...>
[pid   359] <... getdents64 resumed>0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   360] umount2("./9", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   359] close(3 <unfinished ...>
[pid   357] <... getdents64 resumed>0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   647] <... close resumed>)        = 0
[pid   360] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   359] <... close resumed>)        = 0
[pid   357] close(3 <unfinished ...>
[pid   647] exit_group(0 <unfinished ...>
[pid   360] openat(AT_FDCWD, "./9", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid   647] <... exit_group resumed>)   = ?
[pid   359] rmdir("./9" <unfinished ...>
[pid   357] <... close resumed>)        = 0
[pid   360] <... openat resumed>)       = 3
[pid   647] +++ exited with 0 +++
[pid   360] newfstatat(3, "",  <unfinished ...>
[pid   357] rmdir("./9" <unfinished ...>
[pid   356] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=647, si_uid=0, si_status=0, si_utime=4, si_stime=24} ---
[pid   360] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   359] <... rmdir resumed>)        = 0
[pid   356] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid   360] getdents64(3,  <unfinished ...>
[pid   357] <... rmdir resumed>)        = 0
[pid   360] <... getdents64 resumed>0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   359] mkdir("./10", 0777 <unfinished ...>
[pid   357] mkdir("./10", 0777 <unfinished ...>
[pid   360] umount2("./9/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   357] <... mkdir resumed>)        = 0
[pid   360] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   359] <... mkdir resumed>)        = 0
[pid   360] newfstatat(AT_FDCWD, "./9/binderfs",  <unfinished ...>
[pid   357] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   360] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   359] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   360] unlink("./9/binderfs" <unfinished ...>
[pid   357] <... openat resumed>)       = 3
[pid   360] <... unlink resumed>)       = 0
[pid   359] <... openat resumed>)       = 3
[pid   360] umount2("./9/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   357] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   359] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   357] <... ioctl resumed>)        = 0
[pid   359] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid   359] close(3 <unfinished ...>
[pid   357] close(3 <unfinished ...>
[pid   359] <... close resumed>)        = 0
[pid   357] <... close resumed>)        = 0
[pid   359] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid   357] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid   359] <... clone resumed>, child_tidptr=0x55556caf1650) = 682
[pid   357] <... clone resumed>, child_tidptr=0x55556caf1650) = 683
[   36.640489][  T670] F2FS-fs (loop2): invalid crc value
[   36.640893][  T658] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
[   36.649760][  T647] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[   36.655275][  T658] ext4 filesystem being mounted at /root/syzkaller.iU8IiS/9/bus supports timestamps until (%ptR?) (0x7fffffff)
[   36.675939][  T647] ext4 filesystem being mounted at /root/syzkaller.RLArfL/9/bus supports timestamps until (%ptR?) (0x7fffffff)
[pid   356] <... restart_syscall resumed>) = 0
[pid   356] umount2("./9", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   356] openat(AT_FDCWD, "./9", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   356] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   356] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   356] umount2("./9/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   356] newfstatat(AT_FDCWD, "./9/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   356] unlink("./9/binderfs")      = 0
[pid   356] umount2("./9/bus", MNT_FORCE|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 682 attached
 <unfinished ...>
[pid   682] set_robust_list(0x55556caf1660, 24./strace-static-x86_64: Process 683 attached
) = 0
[pid   683] set_robust_list(0x55556caf1660, 24) = 0
[pid   682] chdir("./10" <unfinished ...>
[pid   683] chdir("./10" <unfinished ...>
[pid   682] <... chdir resumed>)        = 0
[pid   683] <... chdir resumed>)        = 0
[pid   682] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   682] setpgid(0, 0 <unfinished ...>
[pid   683] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   682] <... setpgid resumed>)      = 0
[pid   683] setpgid(0, 0 <unfinished ...>
[pid   682] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid   683] <... setpgid resumed>)      = 0
[pid   683] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid   682] <... openat resumed>)       = 3
[pid   683] <... openat resumed>)       = 3
[pid   683] write(3, "1000", 4)         = 4
[pid   683] close(3)                    = 0
[pid   683] symlink("/dev/binderfs", "./binderfs"executing program
 <unfinished ...>
[pid   682] write(3, "1000", 4 <unfinished ...>
[pid   683] <... symlink resumed>)      = 0
[pid   683] write(1, "executing program\n", 18) = 18
[pid   683] memfd_create("syzkaller", 0) = 3
[pid   683] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   682] <... write resumed>)        = 4
[pid   682] close(3)                    = 0
[pid   682] symlink("/dev/binderfs", "./binderfs") = 0
[pid   682] write(1, "executing program\n", 18executing program
) = 18
[pid   682] memfd_create("syzkaller", 0) = 3
[pid   682] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   360] <... umount2 resumed>)      = 0
[pid   360] umount2("./9/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   360] newfstatat(AT_FDCWD, "./9/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   360] umount2("./9/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   360] openat(AT_FDCWD, "./9/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   360] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   360] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   360] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   360] close(4)                    = 0
[pid   360] rmdir("./9/bus")            = 0
[pid   360] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   360] close(3)                    = 0
[pid   360] rmdir("./9")                = 0
[pid   360] mkdir("./10", 0777)         = 0
[pid   360] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[   36.763806][  T670] F2FS-fs (loop2): recover fsync data on readonly fs
[   36.777066][  T670] F2FS-fs (loop2): Cannot turn on quotas: -2 on 0
[   36.794011][  T670] F2FS-fs (loop2): checkpoint=disable on readonly fs
[pid   683] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   360] <... openat resumed>)       = 3
[pid   360] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   360] close(3)                    = 0
[pid   356] <... umount2 resumed>)      = 0
[pid   360] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55556caf1650) = 684
[pid   356] umount2("./9/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   356] newfstatat(AT_FDCWD, "./9/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   356] umount2("./9/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   356] openat(AT_FDCWD, "./9/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   356] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   356] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   356] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   356] close(4)                    = 0
[pid   356] rmdir("./9/bus")            = 0
[pid   356] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   356] close(3)                    = 0
[pid   356] rmdir("./9")                = 0
[pid   356] mkdir("./10", 0777)         = 0
[pid   356] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   356] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   356] close(3)                    = 0
[pid   356] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55556caf1650) = 685
./strace-static-x86_64: Process 685 attached
[pid   685] set_robust_list(0x55556caf1660, 24) = 0
[pid   685] chdir("./10")               = 0
[pid   685] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   685] setpgid(0, 0)               = 0
executing program
[pid   685] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   685] write(3, "1000", 4)         = 4
[pid   685] close(3)                    = 0
[pid   685] symlink("/dev/binderfs", "./binderfs") = 0
[pid   685] write(1, "executing program\n", 18) = 18
[pid   685] memfd_create("syzkaller", 0) = 3
[pid   685] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
./strace-static-x86_64: Process 684 attached
[pid   684] set_robust_list(0x55556caf1660, 24) = 0
[pid   684] chdir("./10")               = 0
[pid   684] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   684] setpgid(0, 0)               = 0
[pid   684] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   684] write(3, "1000", 4)         = 4
[pid   684] close(3)                    = 0
[pid   684] symlink("/dev/binderfs", "./binderfs") = 0
[pid   684] write(1, "executing program\n", 18executing program
) = 18
[pid   684] memfd_create("syzkaller", 0) = 3
[pid   684] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   682] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   683] <... write resumed>)        = 20699119
[pid   683] munmap(0x7fb94d783000, 138412032) = 0
[pid   683] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4
[pid   670] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   683] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   670] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   683] <... ioctl resumed>)        = 0
[pid   670] <... openat resumed>)       = 3
[pid   683] close(3 <unfinished ...>
[pid   670] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   683] <... close resumed>)        = 0
[pid   683] close(4 <unfinished ...>
[pid   685] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   684] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   682] <... write resumed>)        = 20699119
[pid   682] munmap(0x7fb94d783000, 138412032) = 0
[pid   682] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   683] <... close resumed>)        = 0
[pid   682] <... openat resumed>)       = 4
[pid   683] mkdir("./bus", 0777 <unfinished ...>
[pid   682] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   683] <... mkdir resumed>)        = 0
[pid   683] mount("/dev/loop1", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   685] <... write resumed>)        = 20699119
[pid   684] <... write resumed>)        = 20699119
[pid   685] munmap(0x7fb94d783000, 138412032 <unfinished ...>
[pid   684] munmap(0x7fb94d783000, 138412032) = 0
[pid   684] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   685] <... munmap resumed>)       = 0
[pid   685] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   670] <... ioctl resumed>)        = 0
[pid   670] close(3 <unfinished ...>
[pid   682] <... ioctl resumed>)        = 0
[pid   682] close(3)                    = 0
[pid   682] close(4 <unfinished ...>
[pid   684] <... openat resumed>)       = 4
[pid   682] <... close resumed>)        = 0
[pid   670] <... close resumed>)        = 0
[pid   684] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   682] mkdir("./bus", 0777 <unfinished ...>
[pid   685] <... openat resumed>)       = 4
[pid   684] <... ioctl resumed>)        = 0
[pid   682] <... mkdir resumed>)        = 0
[pid   670] memfd_create("syzkaller", 0 <unfinished ...>
[pid   682] mount("/dev/loop3", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   670] <... memfd_create resumed>) = 3
[pid   670] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid   684] close(3 <unfinished ...>
[pid   670] <... mmap resumed>)         = 0x7fb94d783000
[pid   685] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   684] <... close resumed>)        = 0
[pid   670] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 <unfinished ...>
[pid   684] close(4 <unfinished ...>
[pid   670] <... write resumed>)        = 262144
[pid   670] munmap(0x7fb94d783000, 138412032) = 0
[pid   670] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   685] <... ioctl resumed>)        = 0
[pid   684] <... close resumed>)        = 0
[pid   670] <... openat resumed>)       = 4
[pid   684] mkdir("./bus", 0777 <unfinished ...>
[pid   670] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   684] <... mkdir resumed>)        = 0
[pid   684] mount("/dev/loop4", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   685] close(3)                    = 0
[pid   685] close(4 <unfinished ...>
[pid   670] <... ioctl resumed>)        = 0
[pid   670] close(3)                    = 0
[   37.257588][  T683] F2FS-fs (loop1): invalid crc value
[   37.266489][  T682] F2FS-fs (loop3): invalid crc value
[pid   670] close(4 <unfinished ...>
[pid   685] <... close resumed>)        = 0
[pid   685] mkdir("./bus", 0777)        = 0
[pid   685] mount("/dev/loop0", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   670] <... close resumed>)        = 0
[pid   670] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[   37.320496][  T683] F2FS-fs (loop1): recover fsync data on readonly fs
[   37.321463][  T682] F2FS-fs (loop3): recover fsync data on readonly fs
[   37.327307][  T683] F2FS-fs (loop1): Cannot turn on quotas: -2 on 0
[   37.340796][  T683] F2FS-fs (loop1): checkpoint=disable on readonly fs
[   37.342996][  T682] F2FS-fs (loop3): Cannot turn on quotas: -2 on 0
[   37.354613][  T682] F2FS-fs (loop3): checkpoint=disable on readonly fs
[   37.429321][  T684] F2FS-fs (loop4): invalid crc value
[pid   670] mount("/dev/loop2", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue") = 0
[pid   670] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   670] chdir("./bus")              = 0
[pid   670] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4
[pid   670] ioctl(4, LOOP_CLR_FD)       = 0
[pid   670] close(4)                    = 0
[pid   670] exit_group(0)               = ?
[pid   670] +++ exited with 0 +++
[pid   358] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=670, si_uid=0, si_status=0, si_utime=3, si_stime=22} ---
[   37.456344][  T670] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue
[   37.470948][  T685] F2FS-fs (loop0): invalid crc value
[   37.479474][  T670] ext4 filesystem being mounted at /root/syzkaller.aDc6zi/10/bus supports timestamps until (%ptR?) (0x7fffffff)
[   37.482025][  T684] F2FS-fs (loop4): recover fsync data on readonly fs
[pid   358] umount2("./10", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   683] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   683] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   358] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   683] <... openat resumed>)       = 3
[pid   358] openat(AT_FDCWD, "./10", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid   683] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   358] <... openat resumed>)       = 3
[pid   358] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   358] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   358] umount2("./10/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   358] newfstatat(AT_FDCWD, "./10/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   358] unlink("./10/binderfs")     = 0
[   37.501004][  T684] F2FS-fs (loop4): Cannot turn on quotas: -2 on 0
[   37.510515][  T684] F2FS-fs (loop4): checkpoint=disable on readonly fs
[pid   358] umount2("./10/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   683] <... ioctl resumed>)        = 0
[   37.548005][  T685] F2FS-fs (loop0): recover fsync data on readonly fs
[   37.556128][  T685] F2FS-fs (loop0): Cannot turn on quotas: -2 on 0
[   37.562835][  T685] F2FS-fs (loop0): checkpoint=disable on readonly fs
[pid   683] close(3)                    = 0
[pid   682] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   358] <... umount2 resumed>)      = 0
[pid   682] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   358] umount2("./10/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   358] newfstatat(AT_FDCWD, "./10/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   358] umount2("./10/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   358] openat(AT_FDCWD, "./10/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   358] newfstatat(4, "",  <unfinished ...>
[pid   683] memfd_create("syzkaller", 0 <unfinished ...>
[pid   358] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   358] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   358] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   358] close(4)                    = 0
[pid   358] rmdir("./10/bus" <unfinished ...>
[pid   683] <... memfd_create resumed>) = 3
[pid   358] <... rmdir resumed>)        = 0
[pid   358] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   358] close(3)                    = 0
[pid   358] rmdir("./10" <unfinished ...>
[pid   683] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid   358] <... rmdir resumed>)        = 0
[pid   358] mkdir("./11", 0777 <unfinished ...>
[pid   683] <... mmap resumed>)         = 0x7fb94d783000
[pid   358] <... mkdir resumed>)        = 0
[pid   358] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   683] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144) = 262144
[pid   683] munmap(0x7fb94d783000, 138412032) = 0
[pid   683] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   684] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   682] <... openat resumed>)       = 3
[pid   358] <... openat resumed>)       = 3
[pid   682] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   358] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   684] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3
[pid   683] <... openat resumed>)       = 4
[pid   358] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid   684] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   683] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   358] close(3 <unfinished ...>
[pid   682] <... ioctl resumed>)        = 0
[pid   682] close(3 <unfinished ...>
[pid   685] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   683] <... ioctl resumed>)        = 0
[pid   685] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   358] <... close resumed>)        = 0
[pid   685] <... openat resumed>)       = 3
[pid   685] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   683] close(3)                    = 0
[pid   683] close(4 <unfinished ...>
[pid   358] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55556caf1650) = 699
./strace-static-x86_64: Process 699 attached
[pid   699] set_robust_list(0x55556caf1660, 24) = 0
[pid   699] chdir("./11")               = 0
[pid   699] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   699] setpgid(0, 0)               = 0
[pid   699] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   699] write(3, "1000", 4)         = 4
[pid   699] close(3)                    = 0
[pid   699] symlink("/dev/binderfs", "./binderfs") = 0
[pid   699] write(1, "executing program\n", 18executing program
) = 18
[pid   699] memfd_create("syzkaller", 0) = 3
[pid   699] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   682] <... close resumed>)        = 0
[pid   682] memfd_create("syzkaller", 0) = 3
[pid   682] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   682] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144) = 262144
[pid   682] munmap(0x7fb94d783000, 138412032) = 0
[pid   682] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   699] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   683] <... close resumed>)        = 0
[pid   683] mkdir("./bus", 0777 <unfinished ...>
[pid   682] <... openat resumed>)       = 4
[pid   683] <... mkdir resumed>)        = -1 EEXIST (File exists)
[pid   683] mount("/dev/loop1", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   682] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   684] <... ioctl resumed>)        = 0
[pid   684] close(3 <unfinished ...>
[pid   699] <... write resumed>)        = 20699119
[pid   699] munmap(0x7fb94d783000, 138412032) = 0
[pid   699] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   682] <... ioctl resumed>)        = 0
[pid   684] <... close resumed>)        = 0
[pid   699] <... openat resumed>)       = 4
[pid   684] memfd_create("syzkaller", 0 <unfinished ...>
[pid   682] close(3)                    = 0
[pid   682] close(4)                    = 0
[pid   682] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[pid   682] mount("/dev/loop3", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   699] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   684] <... memfd_create resumed>) = 3
[pid   684] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   684] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 <unfinished ...>
[pid   699] <... ioctl resumed>)        = 0
[pid   699] close(3 <unfinished ...>
[pid   684] <... write resumed>)        = 262144
[pid   699] <... close resumed>)        = 0
[pid   684] munmap(0x7fb94d783000, 138412032 <unfinished ...>
[pid   699] close(4 <unfinished ...>
[pid   684] <... munmap resumed>)       = 0
[pid   684] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   685] <... ioctl resumed>)        = 0
[pid   685] close(3 <unfinished ...>
[pid   682] <... mount resumed>)        = 0
[pid   682] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   682] chdir("./bus")              = 0
[pid   682] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   699] <... close resumed>)        = 0
[pid   685] <... close resumed>)        = 0
[pid   684] <... openat resumed>)       = 4
[pid   699] mkdir("./bus", 0777 <unfinished ...>
[pid   685] memfd_create("syzkaller", 0 <unfinished ...>
[pid   699] <... mkdir resumed>)        = 0
[pid   685] <... memfd_create resumed>) = 3
[pid   699] mount("/dev/loop2", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   685] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   685] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144) = 262144
[pid   684] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   683] <... mount resumed>)        = 0
[pid   683] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid   684] <... ioctl resumed>)        = 0
[pid   683] <... openat resumed>)       = 3
[pid   684] close(3)                    = 0
[pid   683] chdir("./bus" <unfinished ...>
[pid   685] munmap(0x7fb94d783000, 138412032) = 0
[pid   685] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   684] close(4)                    = 0
[pid   683] <... chdir resumed>)        = 0
[pid   684] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[pid   683] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   682] <... openat resumed>)       = 4
[   38.027053][  T682] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[   38.027141][  T683] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue
[   38.039363][  T682] ext4 filesystem being mounted at /root/syzkaller.P1RtK2/10/bus supports timestamps until (%ptR?) (0x7fffffff)
[   38.045645][  T683] ext4 filesystem being mounted at /root/syzkaller.c2lmo2/10/bus supports timestamps until (%ptR?) (0x7fffffff)
[pid   685] <... openat resumed>)       = 4
[pid   685] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   684] mount("/dev/loop4", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   685] <... ioctl resumed>)        = 0
[pid   685] close(3)                    = 0
[pid   685] close(4 <unfinished ...>
[   38.083923][  T699] F2FS-fs (loop2): invalid crc value
[pid   682] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid   685] <... close resumed>)        = 0
[pid   683] <... openat resumed>)       = 4
[pid   685] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[pid   683] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid   685] mount("/dev/loop0", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   683] <... ioctl resumed>)        = 0
[pid   683] close(4)                    = 0
[pid   683] exit_group(0)               = ?
[pid   683] +++ exited with 0 +++
[pid   682] <... ioctl resumed>)        = 0
[pid   357] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=683, si_uid=0, si_status=0, si_utime=7, si_stime=29} ---
[pid   357] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid   682] close(4)                    = 0
[pid   682] exit_group(0)               = ?
[pid   357] <... restart_syscall resumed>) = 0
[pid   357] umount2("./10", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] openat(AT_FDCWD, "./10", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   357] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   357] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   357] umount2("./10/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] newfstatat(AT_FDCWD, "./10/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   357] unlink("./10/binderfs")     = 0
[pid   357] umount2("./10/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   682] +++ exited with 0 +++
[pid   359] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=682, si_uid=0, si_status=0, si_utime=6, si_stime=26} ---
[   38.116272][  T699] F2FS-fs (loop2): recover fsync data on readonly fs
[   38.123014][  T699] F2FS-fs (loop2): Cannot turn on quotas: -2 on 0
[   38.129782][  T699] F2FS-fs (loop2): checkpoint=disable on readonly fs
[pid   359] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   359] umount2("./10", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   359] openat(AT_FDCWD, "./10", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   359] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   359] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   359] umount2("./10/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   359] newfstatat(AT_FDCWD, "./10/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   359] unlink("./10/binderfs")     = 0
[pid   359] umount2("./10/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   685] <... mount resumed>)        = 0
[pid   685] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   685] chdir("./bus")              = 0
[pid   685] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   357] <... umount2 resumed>)      = 0
[pid   685] <... openat resumed>)       = 4
[pid   685] ioctl(4, LOOP_CLR_FD)       = 0
[pid   685] close(4)                    = 0
[pid   685] exit_group(0)               = ?
[pid   685] +++ exited with 0 +++
[pid   356] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=685, si_uid=0, si_status=0, si_utime=7, si_stime=29} ---
[pid   356] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid   684] <... mount resumed>)        = 0
[pid   684] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   684] chdir("./bus")              = 0
[pid   684] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4
[pid   684] ioctl(4, LOOP_CLR_FD)       = 0
[pid   684] close(4)                    = 0
[pid   684] exit_group(0)               = ?
[pid   684] +++ exited with 0 +++
[pid   360] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=684, si_uid=0, si_status=0, si_utime=9, si_stime=26} ---
[pid   360] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid   357] umount2("./10/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   360] <... restart_syscall resumed>) = 0
[pid   356] <... restart_syscall resumed>) = 0
[pid   360] umount2("./10", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   356] umount2("./10", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   360] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   356] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   360] openat(AT_FDCWD, "./10", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid   356] openat(AT_FDCWD, "./10", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid   360] <... openat resumed>)       = 3
[pid   357] newfstatat(AT_FDCWD, "./10/bus",  <unfinished ...>
[pid   356] <... openat resumed>)       = 3
[pid   360] newfstatat(3, "",  <unfinished ...>
[pid   356] newfstatat(3, "",  <unfinished ...>
[pid   360] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   356] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   360] getdents64(3,  <unfinished ...>
[pid   356] getdents64(3,  <unfinished ...>
[pid   360] <... getdents64 resumed>0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   356] <... getdents64 resumed>0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   360] umount2("./10/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   356] umount2("./10/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   360] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   356] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   360] newfstatat(AT_FDCWD, "./10/binderfs",  <unfinished ...>
[pid   356] newfstatat(AT_FDCWD, "./10/binderfs",  <unfinished ...>
[pid   360] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   356] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   360] unlink("./10/binderfs" <unfinished ...>
[pid   356] unlink("./10/binderfs" <unfinished ...>
[pid   360] <... unlink resumed>)       = 0
[pid   357] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   356] <... unlink resumed>)       = 0
[pid   360] umount2("./10/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   356] umount2("./10/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   357] umount2("./10/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] openat(AT_FDCWD, "./10/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   357] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   357] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   357] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   357] close(4)                    = 0
[pid   357] rmdir("./10/bus")           = 0
[pid   357] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   357] close(3)                    = 0
[pid   357] rmdir("./10")               = 0
[pid   357] mkdir("./11", 0777)         = 0
[   38.173962][  T685] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[   38.184245][  T684] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
[   38.185806][  T685] ext4 filesystem being mounted at /root/syzkaller.RLArfL/10/bus supports timestamps until (%ptR?) (0x7fffffff)
[   38.193756][  T684] ext4 filesystem being mounted at /root/syzkaller.iU8IiS/10/bus supports timestamps until (%ptR?) (0x7fffffff)
[pid   357] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   699] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   699] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3
[pid   357] <... openat resumed>)       = 3
[pid   356] <... umount2 resumed>)      = 0
[pid   699] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   357] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   359] <... umount2 resumed>)      = 0
[pid   356] umount2("./10/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   359] umount2("./10/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   356] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   359] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   356] newfstatat(AT_FDCWD, "./10/bus",  <unfinished ...>
[pid   359] newfstatat(AT_FDCWD, "./10/bus",  <unfinished ...>
[pid   356] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   359] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   356] umount2("./10/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   359] umount2("./10/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   356] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   359] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   356] openat(AT_FDCWD, "./10/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid   359] openat(AT_FDCWD, "./10/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid   356] <... openat resumed>)       = 4
[pid   359] <... openat resumed>)       = 4
[pid   356] newfstatat(4, "",  <unfinished ...>
[pid   359] newfstatat(4, "",  <unfinished ...>
[pid   356] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   359] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   356] getdents64(4,  <unfinished ...>
[pid   359] getdents64(4,  <unfinished ...>
[pid   356] <... getdents64 resumed>0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   359] <... getdents64 resumed>0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   356] getdents64(4,  <unfinished ...>
[pid   359] getdents64(4,  <unfinished ...>
[pid   356] <... getdents64 resumed>0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   359] <... getdents64 resumed>0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   356] close(4 <unfinished ...>
[pid   359] close(4 <unfinished ...>
[pid   356] <... close resumed>)        = 0
[pid   359] <... close resumed>)        = 0
[pid   356] rmdir("./10/bus" <unfinished ...>
[pid   359] rmdir("./10/bus" <unfinished ...>
[pid   356] <... rmdir resumed>)        = 0
[pid   359] <... rmdir resumed>)        = 0
[pid   356] getdents64(3,  <unfinished ...>
[pid   359] getdents64(3,  <unfinished ...>
[pid   356] <... getdents64 resumed>0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   359] <... getdents64 resumed>0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   356] close(3 <unfinished ...>
[pid   359] close(3 <unfinished ...>
[pid   356] <... close resumed>)        = 0
[pid   359] <... close resumed>)        = 0
[pid   356] rmdir("./10" <unfinished ...>
[pid   359] rmdir("./10" <unfinished ...>
[pid   356] <... rmdir resumed>)        = 0
[pid   359] <... rmdir resumed>)        = 0
[pid   356] mkdir("./11", 0777 <unfinished ...>
[pid   359] mkdir("./11", 0777 <unfinished ...>
[pid   356] <... mkdir resumed>)        = 0
[pid   359] <... mkdir resumed>)        = 0
[pid   356] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   359] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   360] <... umount2 resumed>)      = 0
[pid   360] umount2("./10/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   360] newfstatat(AT_FDCWD, "./10/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   360] umount2("./10/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   360] openat(AT_FDCWD, "./10/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   360] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   360] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   360] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   360] close(4)                    = 0
[pid   360] rmdir("./10/bus")           = 0
[pid   360] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   360] close(3)                    = 0
[pid   360] rmdir("./10")               = 0
[pid   360] mkdir("./11", 0777)         = 0
[pid   360] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3
[pid   359] <... openat resumed>)       = 3
[pid   357] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid   356] <... openat resumed>)       = 3
[pid   360] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   359] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   356] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   360] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid   359] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid   356] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid   360] close(3 <unfinished ...>
[pid   359] close(3 <unfinished ...>
[pid   356] close(3 <unfinished ...>
[pid   360] <... close resumed>)        = 0
[pid   359] <... close resumed>)        = 0
[pid   356] <... close resumed>)        = 0
[pid   360] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid   359] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid   356] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid   360] <... clone resumed>, child_tidptr=0x55556caf1650) = 714
[pid   359] <... clone resumed>, child_tidptr=0x55556caf1650) = 715
[pid   356] <... clone resumed>, child_tidptr=0x55556caf1650) = 716
./strace-static-x86_64: Process 715 attached
[pid   715] set_robust_list(0x55556caf1660, 24) = 0
[pid   715] chdir("./11")               = 0
[pid   715] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   357] close(3 <unfinished ...>
[pid   715] setpgid(0, 0)               = 0
[pid   715] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   715] write(3, "1000", 4)         = 4
[pid   715] close(3)                    = 0
[pid   715] symlink("/dev/binderfs", "./binderfs") = 0
[pid   715] write(1, "executing program\n", 18executing program
) = 18
[pid   715] memfd_create("syzkaller", 0) = 3
[pid   715] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   357] <... close resumed>)        = 0
[pid   357] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55556caf1650) = 717
./strace-static-x86_64: Process 717 attached
[pid   717] set_robust_list(0x55556caf1660, 24) = 0
[pid   717] chdir("./11")               = 0
[pid   717] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   717] setpgid(0, 0)               = 0
[pid   717] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   717] write(3, "1000", 4)         = 4
[pid   717] close(3)                    = 0
[pid   717] symlink("/dev/binderfs", "./binderfs") = 0
[pid   717] write(1, "executing program\n", 18executing program
) = 18
[pid   717] memfd_create("syzkaller", 0) = 3
./strace-static-x86_64: Process 716 attached
[pid   717] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid   716] set_robust_list(0x55556caf1660, 24) = 0
[pid   717] <... mmap resumed>)         = 0x7fb94d783000
[pid   716] chdir("./11"./strace-static-x86_64: Process 714 attached
)               = 0
[pid   716] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   714] set_robust_list(0x55556caf1660, 24 <unfinished ...>
[pid   716] setpgid(0, 0 <unfinished ...>
[pid   714] <... set_robust_list resumed>) = 0
[pid   716] <... setpgid resumed>)      = 0
[pid   714] chdir("./11" <unfinished ...>
[pid   716] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid   714] <... chdir resumed>)        = 0
[pid   716] <... openat resumed>)       = 3
[pid   714] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid   716] write(3, "1000", 4 <unfinished ...>
[pid   714] <... prctl resumed>)        = 0
[pid   716] <... write resumed>)        = 4
[pid   714] setpgid(0, 0 <unfinished ...>
[pid   716] close(3 <unfinished ...>
[pid   714] <... setpgid resumed>)      = 0
[pid   716] <... close resumed>)        = 0
[pid   716] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid   714] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid   716] <... symlink resumed>)      = 0
executing program
[pid   716] write(1, "executing program\n", 18 <unfinished ...>
[pid   714] <... openat resumed>)       = 3
[pid   716] <... write resumed>)        = 18
[pid   714] write(3, "1000", 4 <unfinished ...>
[pid   716] memfd_create("syzkaller", 0 <unfinished ...>
[pid   714] <... write resumed>)        = 4
[pid   716] <... memfd_create resumed>) = 3
[pid   714] close(3 <unfinished ...>
[pid   716] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid   714] <... close resumed>)        = 0
[pid   716] <... mmap resumed>)         = 0x7fb94d783000
[pid   714] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   714] write(1, "executing program\n", 18) = 18
[pid   714] memfd_create("syzkaller", 0) = 3
[pid   714] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   699] <... ioctl resumed>)        = 0
[pid   699] close(3)                    = 0
[pid   699] memfd_create("syzkaller", 0) = 3
[pid   699] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   699] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144) = 262144
[pid   699] munmap(0x7fb94d783000, 138412032) = 0
[pid   699] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4
[pid   699] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid   699] close(3)                    = 0
[pid   699] close(4)                    = 0
[pid   699] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[pid   699] mount("/dev/loop2", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   715] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   716] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   714] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   717] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   699] <... mount resumed>)        = 0
[pid   699] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   699] chdir("./bus")              = 0
[pid   699] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4
[pid   699] ioctl(4, LOOP_CLR_FD)       = 0
[pid   699] close(4)                    = 0
[pid   699] exit_group(0)               = ?
[pid   699] +++ exited with 0 +++
[pid   358] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=699, si_uid=0, si_status=0, si_utime=4, si_stime=27} ---
[pid   358] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   358] umount2("./11", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   358] openat(AT_FDCWD, "./11", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   358] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   358] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   358] umount2("./11/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   358] newfstatat(AT_FDCWD, "./11/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   358] unlink("./11/binderfs")     = 0
[   38.742650][  T699] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue
[   38.757048][  T699] ext4 filesystem being mounted at /root/syzkaller.aDc6zi/11/bus supports timestamps until (%ptR?) (0x7fffffff)
[pid   358] umount2("./11/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   358] umount2("./11/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   358] newfstatat(AT_FDCWD, "./11/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   358] umount2("./11/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   358] openat(AT_FDCWD, "./11/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   358] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   358] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   358] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   358] close(4)                    = 0
[pid   358] rmdir("./11/bus")           = 0
[pid   358] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   358] close(3)                    = 0
[pid   358] rmdir("./11")               = 0
[pid   358] mkdir("./12", 0777)         = 0
[pid   358] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3
[pid   358] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   358] close(3)                    = 0
[pid   358] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55556caf1650) = 721
./strace-static-x86_64: Process 721 attached
[pid   721] set_robust_list(0x55556caf1660, 24) = 0
[pid   721] chdir("./12")               = 0
[pid   721] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   721] setpgid(0, 0)               = 0
[pid   721] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   721] write(3, "1000", 4)         = 4
[pid   721] close(3)                    = 0
[pid   721] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   721] write(1, "executing program\n", 18) = 18
[pid   721] memfd_create("syzkaller", 0) = 3
[pid   721] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   716] <... write resumed>)        = 20699119
[pid   716] munmap(0x7fb94d783000, 138412032) = 0
[pid   716] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid   716] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid   716] close(3)                    = 0
[pid   716] close(4)                    = 0
[pid   716] mkdir("./bus", 0777)        = 0
[pid   716] mount("/dev/loop0", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   715] <... write resumed>)        = 20699119
[pid   714] <... write resumed>)        = 20699119
[pid   715] munmap(0x7fb94d783000, 138412032) = 0
[pid   714] munmap(0x7fb94d783000, 138412032 <unfinished ...>
[pid   715] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4
[pid   714] <... munmap resumed>)       = 0
[pid   715] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[   38.934016][  T716] F2FS-fs (loop0): invalid crc value
[pid   714] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   715] <... ioctl resumed>)        = 0
[pid   715] close(3 <unfinished ...>
[pid   714] <... openat resumed>)       = 4
[pid   715] <... close resumed>)        = 0
[pid   714] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   715] close(4)                    = 0
[pid   714] <... ioctl resumed>)        = 0
[pid   715] mkdir("./bus", 0777 <unfinished ...>
[pid   714] close(3 <unfinished ...>
[pid   715] <... mkdir resumed>)        = 0
[pid   714] <... close resumed>)        = 0
[pid   715] mount("/dev/loop3", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   714] close(4 <unfinished ...>
[pid   717] <... write resumed>)        = 20699119
[pid   717] munmap(0x7fb94d783000, 138412032) = 0
[pid   717] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4
[pid   714] <... close resumed>)        = 0
[pid   717] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   714] mkdir("./bus", 0777)        = 0
[pid   714] mount("/dev/loop4", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   721] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   717] <... ioctl resumed>)        = 0
[pid   717] close(3)                    = 0
[   39.010877][  T716] F2FS-fs (loop0): recover fsync data on readonly fs
[   39.018171][  T716] F2FS-fs (loop0): Cannot turn on quotas: -2 on 0
[   39.024825][  T716] F2FS-fs (loop0): checkpoint=disable on readonly fs
[   39.041194][  T715] F2FS-fs (loop3): invalid crc value
[   39.054150][  T714] F2FS-fs (loop4): invalid crc value
[pid   717] close(4)                    = 0
[pid   717] mkdir("./bus", 0777)        = 0
[pid   717] mount("/dev/loop1", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   721] <... write resumed>)        = 20699119
[pid   721] munmap(0x7fb94d783000, 138412032) = 0
[   39.128409][  T715] F2FS-fs (loop3): recover fsync data on readonly fs
[   39.137937][  T714] F2FS-fs (loop4): recover fsync data on readonly fs
[   39.144580][  T714] F2FS-fs (loop4): Cannot turn on quotas: -2 on 0
[   39.147171][  T715] F2FS-fs (loop3): Cannot turn on quotas: -2 on 0
[   39.152127][  T714] F2FS-fs (loop4): checkpoint=disable on readonly fs
[   39.164952][  T715] F2FS-fs (loop3): checkpoint=disable on readonly fs
[pid   721] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   716] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   716] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   721] <... openat resumed>)       = 4
[pid   721] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   716] <... openat resumed>)       = 3
[pid   716] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   721] <... ioctl resumed>)        = 0
[pid   721] close(3)                    = 0
[   39.214763][  T717] F2FS-fs (loop1): invalid crc value
[   39.244228][  T717] F2FS-fs (loop1): recover fsync data on readonly fs
[   39.250869][  T717] F2FS-fs (loop1): Cannot turn on quotas: -2 on 0
[   39.258094][  T717] F2FS-fs (loop1): checkpoint=disable on readonly fs
[pid   721] close(4)                    = 0
[pid   721] mkdir("./bus", 0777)        = 0
[pid   721] mount("/dev/loop2", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   716] <... ioctl resumed>)        = 0
[pid   716] close(3 <unfinished ...>
[pid   714] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[   39.316649][  T721] F2FS-fs (loop2): invalid crc value
[pid   714] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   717] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   716] <... close resumed>)        = 0
[pid   715] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   717] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   716] memfd_create("syzkaller", 0 <unfinished ...>
[pid   717] <... openat resumed>)       = 3
[pid   716] <... memfd_create resumed>) = 3
[pid   717] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   716] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid   717] <... ioctl resumed>)        = 0
[pid   716] <... mmap resumed>)         = 0x7fb94d783000
[pid   717] close(3 <unfinished ...>
[pid   716] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 <unfinished ...>
[pid   717] <... close resumed>)        = 0
[pid   716] <... write resumed>)        = 262144
[pid   717] memfd_create("syzkaller", 0) = 3
[pid   717] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   717] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 <unfinished ...>
[pid   715] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   714] <... openat resumed>)       = 3
[pid   717] <... write resumed>)        = 262144
[pid   716] munmap(0x7fb94d783000, 138412032 <unfinished ...>
[pid   715] <... openat resumed>)       = 3
[pid   714] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   716] <... munmap resumed>)       = 0
[pid   715] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   717] munmap(0x7fb94d783000, 138412032 <unfinished ...>
[pid   716] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   717] <... munmap resumed>)       = 0
[   39.358758][  T721] F2FS-fs (loop2): recover fsync data on readonly fs
[   39.367414][  T721] F2FS-fs (loop2): Cannot turn on quotas: -2 on 0
[   39.374007][  T721] F2FS-fs (loop2): checkpoint=disable on readonly fs
[pid   717] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   716] <... openat resumed>)       = 4
[pid   716] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   714] <... ioctl resumed>)        = 0
[pid   714] close(3 <unfinished ...>
[pid   716] <... ioctl resumed>)        = 0
[pid   716] close(3)                    = 0
[pid   716] close(4 <unfinished ...>
[pid   721] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   721] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3
[pid   716] <... close resumed>)        = 0
[pid   716] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[pid   716] mount("/dev/loop0", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   721] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   717] <... openat resumed>)       = 4
[pid   714] <... close resumed>)        = 0
[pid   717] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   714] memfd_create("syzkaller", 0) = 3
[pid   714] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   714] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144) = 262144
[pid   714] munmap(0x7fb94d783000, 138412032) = 0
[pid   714] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   717] <... ioctl resumed>)        = 0
[pid   717] close(3 <unfinished ...>
[pid   714] <... openat resumed>)       = 4
[pid   717] <... close resumed>)        = 0
[pid   714] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   717] close(4 <unfinished ...>
[pid   714] <... ioctl resumed>)        = 0
[pid   714] close(3)                    = 0
[pid   714] close(4 <unfinished ...>
[pid   715] <... ioctl resumed>)        = 0
[   39.598439][  T716] EXT4-fs warning (device loop0): ext4_enable_quotas:6100: Failed to enable quota tracking (type=0, err=-13, ino=3). Please run e2fsck to fix.
[   39.624447][  T716] EXT4-fs (loop0): mount failed
[pid   715] close(3 <unfinished ...>
[pid   721] <... ioctl resumed>)        = 0
[pid   721] close(3 <unfinished ...>
[pid   717] <... close resumed>)        = 0
[pid   717] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[pid   717] mount("/dev/loop1", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   716] <... mount resumed>)        = -1 EACCES (Permission denied)
[pid   716] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   721] <... close resumed>)        = 0
[pid   715] <... close resumed>)        = 0
[pid   714] <... close resumed>)        = 0
[pid   721] memfd_create("syzkaller", 0 <unfinished ...>
[pid   715] memfd_create("syzkaller", 0 <unfinished ...>
[pid   721] <... memfd_create resumed>) = 3
[pid   715] <... memfd_create resumed>) = 3
[pid   714] mkdir("./bus", 0777 <unfinished ...>
[pid   721] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid   715] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid   721] <... mmap resumed>)         = 0x7fb94d783000
[pid   715] <... mmap resumed>)         = 0x7fb94d783000
[pid   714] <... mkdir resumed>)        = -1 EEXIST (File exists)
[pid   721] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 <unfinished ...>
[pid   715] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 <unfinished ...>
[pid   714] mount("/dev/loop4", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   721] <... write resumed>)        = 262144
[pid   721] munmap(0x7fb94d783000, 138412032) = 0
[pid   721] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   715] <... write resumed>)        = 262144
[pid   715] munmap(0x7fb94d783000, 138412032) = 0
[pid   715] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   716] <... openat resumed>)       = 3
[pid   716] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   721] <... openat resumed>)       = 4
[pid   716] <... ioctl resumed>)        = 0
[pid   715] <... openat resumed>)       = 4
[pid   721] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   716] close(3 <unfinished ...>
[pid   715] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   721] <... ioctl resumed>)        = 0
[pid   716] <... close resumed>)        = 0
[pid   716] exit_group(0)               = ?
[pid   721] close(3 <unfinished ...>
[pid   716] +++ exited with 0 +++
[pid   721] <... close resumed>)        = 0
[pid   721] close(4 <unfinished ...>
[pid   715] <... ioctl resumed>)        = 0
[pid   715] close(3)                    = 0
[pid   715] close(4 <unfinished ...>
[pid   356] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=716, si_uid=0, si_status=0, si_utime=11, si_stime=24} ---
[pid   356] umount2("./11", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   356] openat(AT_FDCWD, "./11", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   356] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   356] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   356] umount2("./11/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   356] newfstatat(AT_FDCWD, "./11/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   356] unlink("./11/binderfs")     = 0
[pid   356] umount2("./11/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   356] newfstatat(AT_FDCWD, "./11/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   356] umount2("./11/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   356] openat(AT_FDCWD, "./11/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   356] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   356] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   356] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   356] close(4)                    = 0
[pid   356] rmdir("./11/bus")           = 0
[pid   356] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   356] close(3)                    = 0
[pid   356] rmdir("./11")               = 0
[pid   356] mkdir("./12", 0777)         = 0
[pid   356] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   714] <... mount resumed>)        = 0
[pid   714] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   714] chdir("./bus")              = 0
[pid   714] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   715] <... close resumed>)        = 0
[pid   715] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[   39.929161][  T717] EXT4-fs warning (device loop1): ext4_enable_quotas:6100: Failed to enable quota tracking (type=0, err=-13, ino=3). Please run e2fsck to fix.
[   39.940728][  T714] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
[   39.944611][  T717] EXT4-fs (loop1): mount failed
[   39.953762][  T714] ext4 filesystem being mounted at /root/syzkaller.iU8IiS/11/bus supports timestamps until (%ptR?) (0x7fffffff)
[pid   715] mount("/dev/loop3", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   356] <... openat resumed>)       = 3
[pid   356] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   356] close(3)                    = 0
[pid   356] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55556caf1650) = 745
./strace-static-x86_64: Process 745 attached
[pid   745] set_robust_list(0x55556caf1660, 24) = 0
[pid   745] chdir("./12")               = 0
[pid   745] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   745] setpgid(0, 0)               = 0
[pid   745] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   745] write(3, "1000", 4)         = 4
[pid   745] close(3)                    = 0
[pid   745] symlink("/dev/binderfs", "./binderfs") = 0
[pid   745] write(1, "executing program\n", 18executing program
) = 18
[pid   745] memfd_create("syzkaller", 0) = 3
[pid   745] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   717] <... mount resumed>)        = -1 EACCES (Permission denied)
[pid   717] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   721] <... close resumed>)        = 0
[pid   721] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[pid   721] mount("/dev/loop2", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   714] <... openat resumed>)       = 4
[pid   717] <... openat resumed>)       = 3
[pid   714] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid   717] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   714] <... ioctl resumed>)        = 0
[pid   714] close(4 <unfinished ...>
[pid   745] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   717] <... ioctl resumed>)        = 0
[pid   714] <... close resumed>)        = 0
[pid   714] exit_group(0)               = ?
[pid   714] +++ exited with 0 +++
[pid   360] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=714, si_uid=0, si_status=0, si_utime=4, si_stime=26} ---
[pid   360] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid   717] close(3)                    = 0
[pid   360] <... restart_syscall resumed>) = 0
[pid   360] umount2("./11", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   717] exit_group(0 <unfinished ...>
[pid   360] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   360] openat(AT_FDCWD, "./11", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid   717] <... exit_group resumed>)   = ?
[pid   360] <... openat resumed>)       = 3
[pid   717] +++ exited with 0 +++
[pid   360] newfstatat(3, "",  <unfinished ...>
[pid   357] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=717, si_uid=0, si_status=0, si_utime=9, si_stime=20} ---
[pid   357] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid   360] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   360] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   360] umount2("./11/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   360] newfstatat(AT_FDCWD, "./11/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   360] unlink("./11/binderfs")     = 0
[pid   360] umount2("./11/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   357] <... restart_syscall resumed>) = 0
[pid   357] umount2("./11", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] openat(AT_FDCWD, "./11", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   357] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   357] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   357] umount2("./11/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] newfstatat(AT_FDCWD, "./11/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   357] unlink("./11/binderfs")     = 0
[pid   357] umount2("./11/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] newfstatat(AT_FDCWD, "./11/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   357] umount2("./11/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] openat(AT_FDCWD, "./11/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   357] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   357] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   357] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   357] close(4)                    = 0
[pid   357] rmdir("./11/bus")           = 0
[pid   357] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   357] close(3)                    = 0
[pid   357] rmdir("./11")               = 0
[pid   357] mkdir("./12", 0777)         = 0
[   40.085413][  T721] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue
[   40.094759][  T721] ext4 filesystem being mounted at /root/syzkaller.aDc6zi/12/bus supports timestamps until (%ptR?) (0x7fffffff)
[   40.120108][  T715] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[pid   357] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   721] <... mount resumed>)        = 0
[pid   721] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   721] chdir("./bus")              = 0
[pid   721] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   715] <... mount resumed>)        = 0
[pid   715] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   715] chdir("./bus")              = 0
[pid   715] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   745] <... write resumed>)        = 20699119
[pid   745] munmap(0x7fb94d783000, 138412032 <unfinished ...>
[pid   721] <... openat resumed>)       = 4
[pid   360] <... umount2 resumed>)      = 0
[pid   357] <... openat resumed>)       = 3
[pid   721] ioctl(4, LOOP_CLR_FD)       = 0
[pid   721] close(4)                    = 0
[pid   721] exit_group(0)               = ?
[pid   721] +++ exited with 0 +++
[pid   357] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   360] umount2("./11/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   360] newfstatat(AT_FDCWD, "./11/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   360] umount2("./11/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   360] openat(AT_FDCWD, "./11/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   360] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   360] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   360] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   360] close(4)                    = 0
[pid   360] rmdir("./11/bus")           = 0
[pid   360] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   360] close(3)                    = 0
[pid   360] rmdir("./11" <unfinished ...>
[pid   357] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid   358] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=721, si_uid=0, si_status=0, si_utime=6, si_stime=22} ---
[pid   360] <... rmdir resumed>)        = 0
[pid   360] mkdir("./12", 0777)         = 0
[pid   357] close(3 <unfinished ...>
[pid   360] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   357] <... close resumed>)        = 0
[pid   357] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid   360] <... openat resumed>)       = 3
[pid   358] umount2("./12", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   360] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   360] close(3)                    = 0
[pid   360] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid   358] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   360] <... clone resumed>, child_tidptr=0x55556caf1650) = 751
[pid   358] openat(AT_FDCWD, "./12", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid   357] <... clone resumed>, child_tidptr=0x55556caf1650) = 750
[pid   358] <... openat resumed>)       = 3
[pid   358] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   358] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   358] umount2("./12/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   745] <... munmap resumed>)       = 0
[pid   745] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid   745] ioctl(4, LOOP_SET_FD, 3./strace-static-x86_64: Process 750 attached
 <unfinished ...>
[pid   750] set_robust_list(0x55556caf1660, 24) = 0
[pid   750] chdir("./12")               = 0
[pid   750] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   750] setpgid(0, 0)               = 0
[pid   750] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid   358] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   750] <... openat resumed>)       = 3
[pid   750] write(3, "1000", 4)         = 4
[pid   750] close(3)                    = 0
[pid   750] symlink("/dev/binderfs", "./binderfs"executing program
 <unfinished ...>
[pid   358] newfstatat(AT_FDCWD, "./12/binderfs",  <unfinished ...>
[pid   750] <... symlink resumed>)      = 0
[pid   750] write(1, "executing program\n", 18) = 18
[pid   358] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   358] unlink("./12/binderfs"./strace-static-x86_64: Process 751 attached
)     = 0
[pid   358] umount2("./12/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   750] memfd_create("syzkaller", 0) = 3
[pid   750] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   751] set_robust_list(0x55556caf1660, 24) = 0
[pid   745] <... ioctl resumed>)        = 0
[pid   745] close(3)                    = 0
[pid   745] close(4 <unfinished ...>
[pid   751] chdir("./12")               = 0
[pid   751] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   751] setpgid(0, 0)               = 0
[pid   751] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   751] write(3, "1000", 4)         = 4
[pid   751] close(3)                    = 0
[pid   751] symlink("/dev/binderfs", "./binderfs") = 0
[pid   751] write(1, "executing program\n", 18executing program
) = 18
[pid   751] memfd_create("syzkaller", 0) = 3
[pid   751] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[   40.147673][  T715] ext4 filesystem being mounted at /root/syzkaller.P1RtK2/11/bus supports timestamps until (%ptR?) (0x7fffffff)
[pid   715] <... openat resumed>)       = 4
[pid   358] <... umount2 resumed>)      = 0
[pid   358] umount2("./12/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   358] newfstatat(AT_FDCWD, "./12/bus",  <unfinished ...>
[pid   745] <... close resumed>)        = 0
[pid   715] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid   358] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   358] umount2("./12/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   745] mkdir("./bus", 0777 <unfinished ...>
[pid   358] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   715] <... ioctl resumed>)        = 0
[pid   358] openat(AT_FDCWD, "./12/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   358] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   358] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   358] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   358] close(4)                    = 0
[pid   358] rmdir("./12/bus")           = 0
[pid   358] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   745] <... mkdir resumed>)        = 0
[pid   715] close(4 <unfinished ...>
[pid   745] mount("/dev/loop0", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   358] close(3)                    = 0
[pid   358] rmdir("./12" <unfinished ...>
[pid   715] <... close resumed>)        = 0
[pid   358] <... rmdir resumed>)        = 0
[pid   358] mkdir("./13", 0777)         = 0
[pid   715] exit_group(0 <unfinished ...>
[pid   358] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3
[pid   358] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   358] close(3)                    = 0
[pid   358] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid   715] <... exit_group resumed>)   = ?
[pid   358] <... clone resumed>, child_tidptr=0x55556caf1650) = 753
[pid   715] +++ exited with 0 +++
[pid   359] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=715, si_uid=0, si_status=0, si_utime=4, si_stime=26} ---
[pid   359] umount2("./11", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   359] openat(AT_FDCWD, "./11", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   359] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   359] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   359] umount2("./11/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   359] newfstatat(AT_FDCWD, "./11/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   359] unlink("./11/binderfs"./strace-static-x86_64: Process 753 attached
)     = 0
[pid   359] umount2("./11/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   753] set_robust_list(0x55556caf1660, 24) = 0
[pid   753] chdir("./13")               = 0
[pid   753] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   753] setpgid(0, 0)               = 0
[pid   753] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   753] write(3, "1000", 4)         = 4
[pid   753] close(3)                    = 0
[pid   753] symlink("/dev/binderfs", "./binderfs"executing program
) = 0
[pid   753] write(1, "executing program\n", 18) = 18
[pid   753] memfd_create("syzkaller", 0) = 3
[pid   753] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[   40.245287][  T715] syz-executor300 (715) used greatest stack depth: 22744 bytes left
[   40.254875][  T745] F2FS-fs (loop0): invalid crc value
[pid   359] <... umount2 resumed>)      = 0
[pid   359] umount2("./11/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   359] newfstatat(AT_FDCWD, "./11/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   359] umount2("./11/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   359] openat(AT_FDCWD, "./11/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   359] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   359] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   359] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   359] close(4)                    = 0
[pid   359] rmdir("./11/bus")           = 0
[pid   359] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   359] close(3)                    = 0
[pid   359] rmdir("./11")               = 0
[pid   359] mkdir("./12", 0777)         = 0
[pid   359] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3
[pid   359] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   359] close(3)                    = 0
[pid   359] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55556caf1650) = 755
./strace-static-x86_64: Process 755 attached
[pid   755] set_robust_list(0x55556caf1660, 24) = 0
[pid   755] chdir("./12")               = 0
[pid   755] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   755] setpgid(0, 0)               = 0
[pid   755] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   755] write(3, "1000", 4)         = 4
[pid   755] close(3)                    = 0
[pid   755] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   755] write(1, "executing program\n", 18) = 18
[pid   755] memfd_create("syzkaller", 0) = 3
[pid   755] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[   40.357898][  T745] F2FS-fs (loop0): recover fsync data on readonly fs
[   40.374866][  T745] F2FS-fs (loop0): Cannot turn on quotas: -2 on 0
[pid   751] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[   40.399749][  T745] F2FS-fs (loop0): checkpoint=disable on readonly fs
[pid   750] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   753] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   755] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   745] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   745] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   745] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   750] <... write resumed>)        = 20699119
[pid   750] munmap(0x7fb94d783000, 138412032) = 0
[pid   750] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   751] <... write resumed>)        = 20699119
[pid   751] munmap(0x7fb94d783000, 138412032) = 0
[pid   751] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   753] <... write resumed>)        = 20699119
[pid   753] munmap(0x7fb94d783000, 138412032) = 0
[pid   753] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   755] <... write resumed>)        = 20699119
[pid   755] munmap(0x7fb94d783000, 138412032) = 0
[pid   755] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   750] <... openat resumed>)       = 4
[pid   750] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   751] <... openat resumed>)       = 4
[pid   750] <... ioctl resumed>)        = 0
[pid   751] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   750] close(3)                    = 0
[pid   750] close(4 <unfinished ...>
[pid   751] <... ioctl resumed>)        = 0
[pid   751] close(3)                    = 0
[pid   751] close(4 <unfinished ...>
[pid   755] <... openat resumed>)       = 4
[pid   755] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   753] <... openat resumed>)       = 4
[pid   753] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   745] <... ioctl resumed>)        = 0
[pid   745] close(3 <unfinished ...>
[pid   750] <... close resumed>)        = 0
[pid   750] mkdir("./bus", 0777)        = 0
[pid   750] mount("/dev/loop1", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   751] <... close resumed>)        = 0
[pid   755] <... ioctl resumed>)        = 0
[pid   751] mkdir("./bus", 0777 <unfinished ...>
[pid   755] close(3)                    = 0
[pid   755] close(4 <unfinished ...>
[pid   751] <... mkdir resumed>)        = 0
[pid   751] mount("/dev/loop4", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   753] <... ioctl resumed>)        = 0
[pid   753] close(3)                    = 0
[   40.791074][  T751] F2FS-fs (loop4): invalid crc value
[pid   753] close(4 <unfinished ...>
[pid   745] <... close resumed>)        = 0
[pid   745] memfd_create("syzkaller", 0) = 3
[pid   745] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   745] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144) = 262144
[pid   745] munmap(0x7fb94d783000, 138412032) = 0
[pid   745] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   753] <... close resumed>)        = 0
[pid   753] mkdir("./bus", 0777)        = 0
[   40.816373][  T751] F2FS-fs (loop4): recover fsync data on readonly fs
[   40.823041][  T751] F2FS-fs (loop4): Cannot turn on quotas: -2 on 0
[   40.829687][  T751] F2FS-fs (loop4): checkpoint=disable on readonly fs
[pid   753] mount("/dev/loop2", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   755] <... close resumed>)        = 0
[pid   745] <... openat resumed>)       = 4
[pid   755] mkdir("./bus", 0777)        = 0
[pid   755] mount("/dev/loop3", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   751] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   751] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3
[pid   751] ioctl(3, LOOP_CLR_FD)       = 0
[pid   751] close(3)                    = 0
[pid   751] memfd_create("syzkaller", 0) = 3
[pid   751] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   751] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144) = 262144
[pid   751] munmap(0x7fb94d783000, 138412032) = 0
[pid   751] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4
[pid   751] ioctl(4, LOOP_SET_FD, 3)    = -1 EBUSY (Device or resource busy)
[pid   751] ioctl(4, LOOP_CLR_FD)       = 0
[pid   745] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   751] ioctl(4, LOOP_SET_FD, 3)    = -1 EBUSY (Device or resource busy)
[pid   745] <... ioctl resumed>)        = 0
[pid   751] close(4)                    = 0
[pid   751] close(3)                    = 0
[pid   745] close(3)                    = 0
[pid   745] close(4 <unfinished ...>
[pid   751] exit_group(0)               = ?
[pid   751] +++ exited with 0 +++
[pid   360] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=751, si_uid=0, si_status=0, si_utime=8, si_stime=17} ---
[pid   360] umount2("./12", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   360] openat(AT_FDCWD, "./12", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   360] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   360] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   360] umount2("./12/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   360] newfstatat(AT_FDCWD, "./12/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   360] unlink("./12/binderfs")     = 0
[pid   360] umount2("./12/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   360] newfstatat(AT_FDCWD, "./12/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   360] umount2("./12/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   360] openat(AT_FDCWD, "./12/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   360] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   360] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   360] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   360] close(4)                    = 0
[pid   360] rmdir("./12/bus")           = 0
[pid   360] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   360] close(3)                    = 0
[pid   360] rmdir("./12")               = 0
[pid   360] mkdir("./13", 0777)         = 0
[pid   360] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   745] <... close resumed>)        = 0
[pid   745] mkdir("./bus", 0777 <unfinished ...>
[pid   360] <... openat resumed>)       = 3
[pid   745] <... mkdir resumed>)        = -1 EEXIST (File exists)
[pid   360] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   745] mount("/dev/loop0", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   360] <... ioctl resumed>)        = 0
[pid   360] close(3)                    = 0
[pid   360] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55556caf1650) = 766
./strace-static-x86_64: Process 766 attached
[pid   766] set_robust_list(0x55556caf1660, 24) = 0
[pid   766] chdir("./13")               = 0
[pid   766] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   766] setpgid(0, 0)               = 0
[   40.921650][  T755] F2FS-fs (loop3): invalid crc value
[   40.929906][  T750] F2FS-fs (loop1): invalid crc value
[   40.946386][  T753] F2FS-fs (loop2): invalid crc value
[pid   766] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   766] write(3, "1000", 4)         = 4
[pid   766] close(3)                    = 0
[pid   766] symlink("/dev/binderfs", "./binderfs") = 0
[pid   766] write(1, "executing program\n", 18executing program
) = 18
[pid   766] memfd_create("syzkaller", 0) = 3
[pid   766] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[   40.994509][  T745] EXT4-fs warning (device loop0): ext4_enable_quotas:6100: Failed to enable quota tracking (type=0, err=-13, ino=3). Please run e2fsck to fix.
[   41.006602][  T750] F2FS-fs (loop1): recover fsync data on readonly fs
[   41.009842][  T745] EXT4-fs (loop0): mount failed
[   41.020618][  T750] F2FS-fs (loop1): Cannot turn on quotas: -2 on 0
[pid   745] <... mount resumed>)        = -1 EACCES (Permission denied)
[pid   745] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   745] ioctl(3, LOOP_CLR_FD)       = 0
[pid   745] close(3)                    = 0
[pid   745] exit_group(0)               = ?
[pid   745] +++ exited with 0 +++
[pid   356] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=745, si_uid=0, si_status=0, si_utime=2, si_stime=21} ---
[   41.057931][  T755] F2FS-fs (loop3): recover fsync data on readonly fs
[   41.068411][  T753] F2FS-fs (loop2): recover fsync data on readonly fs
[   41.075747][  T755] F2FS-fs (loop3): Cannot turn on quotas: -2 on 0
[pid   356] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   356] umount2("./12", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   356] openat(AT_FDCWD, "./12", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   356] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   356] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   356] umount2("./12/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   356] newfstatat(AT_FDCWD, "./12/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   356] unlink("./12/binderfs")     = 0
[pid   356] umount2("./12/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   356] newfstatat(AT_FDCWD, "./12/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   356] umount2("./12/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   356] openat(AT_FDCWD, "./12/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   356] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   356] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   356] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   356] close(4)                    = 0
[pid   356] rmdir("./12/bus")           = 0
[pid   356] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   356] close(3)                    = 0
[pid   356] rmdir("./12")               = 0
[pid   356] mkdir("./13", 0777)         = 0
[pid   356] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   356] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   356] close(3)                    = 0
[pid   356] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55556caf1650) = 770
./strace-static-x86_64: Process 770 attached
[pid   770] set_robust_list(0x55556caf1660, 24) = 0
[pid   770] chdir("./13")               = 0
[pid   770] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   770] setpgid(0, 0)               = 0
[pid   770] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   770] write(3, "1000", 4)         = 4
[pid   770] close(3)                    = 0
[pid   770] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   770] write(1, "executing program\n", 18) = 18
[pid   770] memfd_create("syzkaller", 0) = 3
[pid   770] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[   41.099052][  T750] F2FS-fs (loop1): checkpoint=disable on readonly fs
[   41.116436][  T753] F2FS-fs (loop2): Cannot turn on quotas: -2 on 0
[   41.116512][  T755] F2FS-fs (loop3): checkpoint=disable on readonly fs
[   41.123115][  T753] F2FS-fs (loop2): checkpoint=disable on readonly fs
[pid   766] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   770] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   766] <... write resumed>)        = 20699119
[pid   766] munmap(0x7fb94d783000, 138412032) = 0
[pid   766] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   750] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   750] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   770] <... write resumed>)        = 20699119
[pid   770] munmap(0x7fb94d783000, 138412032) = 0
[pid   770] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   766] <... openat resumed>)       = 4
[pid   755] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   750] <... openat resumed>)       = 3
[pid   755] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   750] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   766] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   755] <... openat resumed>)       = 3
[pid   770] <... openat resumed>)       = 4
[pid   755] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   770] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   766] <... ioctl resumed>)        = 0
[pid   766] close(3)                    = 0
[pid   766] close(4 <unfinished ...>
[pid   753] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   753] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   770] <... ioctl resumed>)        = 0
[pid   770] close(3 <unfinished ...>
[pid   766] <... close resumed>)        = 0
[pid   753] <... openat resumed>)       = 3
[pid   770] <... close resumed>)        = 0
[pid   770] close(4 <unfinished ...>
[pid   766] mkdir("./bus", 0777 <unfinished ...>
[pid   753] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   766] <... mkdir resumed>)        = 0
[pid   766] mount("/dev/loop4", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   750] <... ioctl resumed>)        = 0
[pid   750] close(3 <unfinished ...>
[pid   755] <... ioctl resumed>)        = 0
[pid   755] close(3 <unfinished ...>
[pid   770] <... close resumed>)        = 0
[pid   770] mkdir("./bus", 0777)        = 0
[pid   770] mount("/dev/loop0", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   750] <... close resumed>)        = 0
[pid   750] memfd_create("syzkaller", 0) = 3
[pid   750] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   750] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144) = 262144
[pid   750] munmap(0x7fb94d783000, 138412032) = 0
[pid   750] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4
[pid   750] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid   755] <... close resumed>)        = 0
[pid   755] memfd_create("syzkaller", 0) = 3
[pid   755] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid   750] close(3 <unfinished ...>
[pid   755] <... mmap resumed>)         = 0x7fb94d783000
[pid   750] <... close resumed>)        = 0
[pid   755] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 <unfinished ...>
[pid   750] close(4 <unfinished ...>
[pid   755] <... write resumed>)        = 262144
[pid   755] munmap(0x7fb94d783000, 138412032) = 0
[   41.634022][  T766] F2FS-fs (loop4): invalid crc value
[   41.661754][  T766] F2FS-fs (loop4): recover fsync data on readonly fs
[   41.668367][  T766] F2FS-fs (loop4): Cannot turn on quotas: -2 on 0
[pid   755] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4
[pid   750] <... close resumed>)        = 0
[pid   755] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   750] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[pid   750] mount("/dev/loop1", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   753] <... ioctl resumed>)        = 0
[   41.681590][  T770] F2FS-fs (loop0): invalid crc value
[   41.690575][  T766] F2FS-fs (loop4): checkpoint=disable on readonly fs
[pid   753] close(3 <unfinished ...>
[pid   755] <... ioctl resumed>)        = 0
[pid   755] close(3)                    = 0
[pid   755] close(4)                    = 0
[pid   753] <... close resumed>)        = 0
[pid   755] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[pid   753] memfd_create("syzkaller", 0 <unfinished ...>
[pid   755] mount("/dev/loop3", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   753] <... memfd_create resumed>) = 3
[pid   753] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   753] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144) = 262144
[pid   753] munmap(0x7fb94d783000, 138412032) = 0
[pid   753] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4
[pid   753] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid   753] close(3)                    = 0
[   41.752847][  T770] F2FS-fs (loop0): recover fsync data on readonly fs
[   41.759524][  T770] F2FS-fs (loop0): Cannot turn on quotas: -2 on 0
[   41.770295][  T770] F2FS-fs (loop0): checkpoint=disable on readonly fs
[pid   753] close(4 <unfinished ...>
[pid   755] <... mount resumed>)        = 0
[pid   753] <... close resumed>)        = 0
[pid   753] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[pid   753] mount("/dev/loop2", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   750] <... mount resumed>)        = 0
[pid   755] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   750] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid   755] chdir("./bus" <unfinished ...>
[pid   750] <... openat resumed>)       = 3
[pid   755] <... chdir resumed>)        = 0
[pid   750] chdir("./bus" <unfinished ...>
[pid   755] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   750] <... chdir resumed>)        = 0
[   41.809660][  T755] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[   41.809944][  T750] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue
[   41.818869][  T755] ext4 filesystem being mounted at /root/syzkaller.P1RtK2/12/bus supports timestamps until (%ptR?) (0x7fffffff)
[   41.827945][  T750] ext4 filesystem being mounted at /root/syzkaller.c2lmo2/12/bus supports timestamps until (%ptR?) (0x7fffffff)
[pid   750] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   753] <... mount resumed>)        = 0
[pid   770] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   753] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid   770] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   753] <... openat resumed>)       = 3
[pid   753] chdir("./bus")              = 0
[   41.908940][  T753] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue
[   41.918201][  T753] ext4 filesystem being mounted at /root/syzkaller.aDc6zi/13/bus supports timestamps until (%ptR?) (0x7fffffff)
[pid   753] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   770] <... openat resumed>)       = 3
[pid   766] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   755] <... openat resumed>)       = 4
[pid   753] <... openat resumed>)       = 4
[pid   750] <... openat resumed>)       = 4
[pid   770] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   755] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid   750] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid   755] <... ioctl resumed>)        = 0
[pid   750] <... ioctl resumed>)        = 0
[pid   755] close(4 <unfinished ...>
[pid   750] close(4 <unfinished ...>
[pid   755] <... close resumed>)        = 0
[pid   750] <... close resumed>)        = 0
[pid   766] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   755] exit_group(0 <unfinished ...>
[pid   753] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid   750] exit_group(0 <unfinished ...>
[pid   755] <... exit_group resumed>)   = ?
[pid   750] <... exit_group resumed>)   = ?
[pid   755] +++ exited with 0 +++
[pid   750] +++ exited with 0 +++
[pid   359] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=755, si_uid=0, si_status=0, si_utime=5, si_stime=26} ---
[pid   357] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=750, si_uid=0, si_status=0, si_utime=7, si_stime=29} ---
[pid   359] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid   357] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid   359] <... restart_syscall resumed>) = 0
[pid   357] <... restart_syscall resumed>) = 0
[pid   357] umount2("./12", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] openat(AT_FDCWD, "./12", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   357] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   357] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   357] umount2("./12/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] newfstatat(AT_FDCWD, "./12/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   359] umount2("./12", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   357] unlink("./12/binderfs" <unfinished ...>
[pid   359] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   357] <... unlink resumed>)       = 0
[pid   359] openat(AT_FDCWD, "./12", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid   357] umount2("./12/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   359] <... openat resumed>)       = 3
[pid   359] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   359] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   359] umount2("./12/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   359] newfstatat(AT_FDCWD, "./12/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   359] unlink("./12/binderfs")     = 0
[pid   359] umount2("./12/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   766] <... openat resumed>)       = 3
[pid   359] <... umount2 resumed>)      = 0
[pid   766] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   359] umount2("./12/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   359] newfstatat(AT_FDCWD, "./12/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   359] umount2("./12/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   359] openat(AT_FDCWD, "./12/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   359] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   359] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   359] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   359] close(4)                    = 0
[pid   359] rmdir("./12/bus")           = 0
[pid   359] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   359] close(3)                    = 0
[pid   359] rmdir("./12")               = 0
[pid   359] mkdir("./13", 0777)         = 0
[pid   359] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   753] <... ioctl resumed>)        = 0
[pid   753] close(4 <unfinished ...>
[pid   770] <... ioctl resumed>)        = 0
[pid   770] close(3)                    = 0
[pid   753] <... close resumed>)        = 0
[pid   770] memfd_create("syzkaller", 0 <unfinished ...>
[pid   753] exit_group(0 <unfinished ...>
[pid   770] <... memfd_create resumed>) = 3
[pid   753] <... exit_group resumed>)   = ?
[pid   770] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid   753] +++ exited with 0 +++
[pid   770] <... mmap resumed>)         = 0x7fb94d783000
[pid   358] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=753, si_uid=0, si_status=0, si_utime=6, si_stime=26} ---
[pid   770] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 <unfinished ...>
[pid   358] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid   770] <... write resumed>)        = 262144
[pid   770] munmap(0x7fb94d783000, 138412032) = 0
[pid   357] <... umount2 resumed>)      = 0
[pid   770] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid   770] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   357] umount2("./12/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] newfstatat(AT_FDCWD, "./12/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   357] umount2("./12/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] openat(AT_FDCWD, "./12/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   357] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   357] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   357] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   357] close(4)                    = 0
[pid   357] rmdir("./12/bus" <unfinished ...>
[pid   358] <... restart_syscall resumed>) = 0
[pid   357] <... rmdir resumed>)        = 0
[pid   357] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   358] umount2("./13", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   357] close(3 <unfinished ...>
[pid   358] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   357] <... close resumed>)        = 0
[pid   358] openat(AT_FDCWD, "./13", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid   357] rmdir("./12" <unfinished ...>
[pid   358] <... openat resumed>)       = 3
[pid   357] <... rmdir resumed>)        = 0
[pid   358] newfstatat(3, "",  <unfinished ...>
[pid   357] mkdir("./13", 0777 <unfinished ...>
[pid   358] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   357] <... mkdir resumed>)        = 0
[pid   358] getdents64(3,  <unfinished ...>
[pid   357] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   358] <... getdents64 resumed>0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   358] umount2("./13/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   358] newfstatat(AT_FDCWD, "./13/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   358] unlink("./13/binderfs")     = 0
[pid   358] umount2("./13/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   770] <... ioctl resumed>)        = 0
[pid   359] <... openat resumed>)       = 3
[pid   357] <... openat resumed>)       = 3
[pid   770] close(3 <unfinished ...>
[pid   359] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   357] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   770] <... close resumed>)        = 0
[pid   770] close(4 <unfinished ...>
[pid   766] <... ioctl resumed>)        = 0
[pid   766] close(3 <unfinished ...>
[pid   359] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid   358] <... umount2 resumed>)      = 0
[pid   357] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid   359] close(3 <unfinished ...>
[pid   358] umount2("./13/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   357] close(3 <unfinished ...>
[pid   358] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   358] newfstatat(AT_FDCWD, "./13/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   358] umount2("./13/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   358] openat(AT_FDCWD, "./13/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   358] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   358] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   358] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   358] close(4)                    = 0
[pid   358] rmdir("./13/bus")           = 0
[pid   358] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   358] close(3)                    = 0
[pid   358] rmdir("./13")               = 0
[pid   358] mkdir("./14", 0777)         = 0
[pid   358] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   766] <... close resumed>)        = 0
[pid   359] <... close resumed>)        = 0
[pid   770] <... close resumed>)        = 0
[pid   766] memfd_create("syzkaller", 0 <unfinished ...>
[pid   359] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid   358] <... openat resumed>)       = 3
[pid   357] <... close resumed>)        = 0
[pid   770] mkdir("./bus", 0777 <unfinished ...>
[pid   766] <... memfd_create resumed>) = 3
[pid   766] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid   358] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   357] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid   766] <... mmap resumed>)         = 0x7fb94d783000
[pid   359] <... clone resumed>, child_tidptr=0x55556caf1650) = 786
[pid   770] <... mkdir resumed>)        = -1 EEXIST (File exists)
[pid   766] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 <unfinished ...>
[pid   358] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid   770] mount("/dev/loop0", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   358] close(3 <unfinished ...>
[pid   357] <... clone resumed>, child_tidptr=0x55556caf1650) = 787
[pid   766] <... write resumed>)        = 262144
[pid   358] <... close resumed>)        = 0
[pid   358] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid   766] munmap(0x7fb94d783000, 138412032) = 0
[pid   766] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   358] <... clone resumed>, child_tidptr=0x55556caf1650) = 788
[pid   766] <... openat resumed>)       = 4
[pid   766] ioctl(4, LOOP_SET_FD, 3./strace-static-x86_64: Process 787 attached
 <unfinished ...>
[pid   787] set_robust_list(0x55556caf1660, 24) = 0
[pid   787] chdir("./13")               = 0
[pid   787] prctl(PR_SET_PDEATHSIG, SIGKILL./strace-static-x86_64: Process 788 attached
./strace-static-x86_64: Process 786 attached
) = 0
[pid   787] setpgid(0, 0)               = 0
[pid   787] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   787] write(3, "1000", 4)         = 4
[pid   787] close(3)                    = 0
[pid   787] symlink("/dev/binderfs", "./binderfs") = 0
[pid   787] write(1, "executing program\n", 18executing program
) = 18
[pid   787] memfd_create("syzkaller", 0) = 3
[pid   787] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   788] set_robust_list(0x55556caf1660, 24 <unfinished ...>
[pid   786] set_robust_list(0x55556caf1660, 24 <unfinished ...>
[pid   766] <... ioctl resumed>)        = 0
[pid   788] <... set_robust_list resumed>) = 0
[pid   786] <... set_robust_list resumed>) = 0
[pid   766] close(3 <unfinished ...>
[pid   786] chdir("./13" <unfinished ...>
[pid   788] chdir("./14" <unfinished ...>
[pid   786] <... chdir resumed>)        = 0
[pid   766] <... close resumed>)        = 0
[pid   786] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid   788] <... chdir resumed>)        = 0
[pid   786] <... prctl resumed>)        = 0
[pid   766] close(4 <unfinished ...>
[pid   788] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid   786] setpgid(0, 0 <unfinished ...>
[pid   788] <... prctl resumed>)        = 0
[pid   786] <... setpgid resumed>)      = 0
[pid   788] setpgid(0, 0)               = 0
[pid   786] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid   788] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   786] <... openat resumed>)       = 3
[pid   788] write(3, "1000", 4 <unfinished ...>
[pid   786] write(3, "1000", 4 <unfinished ...>
[pid   788] <... write resumed>)        = 4
[pid   786] <... write resumed>)        = 4
[pid   788] close(3 <unfinished ...>
[pid   786] close(3 <unfinished ...>
[pid   788] <... close resumed>)        = 0
[pid   786] <... close resumed>)        = 0
[pid   788] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid   786] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid   788] <... symlink resumed>)      = 0
[pid   786] <... symlink resumed>)      = 0
[pid   788] write(1, "executing program\n", 18executing program
executing program
 <unfinished ...>
[pid   786] write(1, "executing program\n", 18 <unfinished ...>
[pid   788] <... write resumed>)        = 18
[pid   786] <... write resumed>)        = 18
[pid   788] memfd_create("syzkaller", 0 <unfinished ...>
[pid   786] memfd_create("syzkaller", 0 <unfinished ...>
[pid   788] <... memfd_create resumed>) = 3
[pid   786] <... memfd_create resumed>) = 3
[pid   788] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid   786] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid   788] <... mmap resumed>)         = 0x7fb94d783000
[pid   786] <... mmap resumed>)         = 0x7fb94d783000
[pid   770] <... mount resumed>)        = 0
[pid   766] <... close resumed>)        = 0
[pid   766] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[pid   766] mount("/dev/loop4", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   770] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   770] chdir("./bus")              = 0
[pid   770] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid   770] ioctl(4, LOOP_CLR_FD)       = 0
[pid   770] close(4)                    = 0
[pid   770] exit_group(0)               = ?
[pid   770] +++ exited with 0 +++
[pid   356] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=770, si_uid=0, si_status=0, si_utime=5, si_stime=22} ---
[pid   356] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   356] umount2("./13", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   356] openat(AT_FDCWD, "./13", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   356] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   356] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   356] umount2("./13/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   356] newfstatat(AT_FDCWD, "./13/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   356] unlink("./13/binderfs")     = 0
[   42.252489][  T770] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[   42.267078][  T770] ext4 filesystem being mounted at /root/syzkaller.RLArfL/13/bus supports timestamps until (%ptR?) (0x7fffffff)
[pid   356] umount2("./13/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   356] umount2("./13/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   356] newfstatat(AT_FDCWD, "./13/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   356] umount2("./13/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   356] openat(AT_FDCWD, "./13/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   356] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   356] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   356] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   356] close(4)                    = 0
[pid   356] rmdir("./13/bus")           = 0
[pid   356] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   356] close(3)                    = 0
[pid   356] rmdir("./13")               = 0
[pid   356] mkdir("./14", 0777)         = 0
[pid   356] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   356] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   356] close(3)                    = 0
[pid   356] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55556caf1650) = 794
./strace-static-x86_64: Process 794 attached
[pid   794] set_robust_list(0x55556caf1660, 24) = 0
[pid   794] chdir("./14")               = 0
[pid   794] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   794] setpgid(0, 0)               = 0
[pid   794] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   794] write(3, "1000", 4)         = 4
[pid   794] close(3)                    = 0
[pid   794] symlink("/dev/binderfs", "./binderfs") = 0
[pid   794] write(1, "executing program\n", 18executing program
) = 18
[pid   794] memfd_create("syzkaller", 0) = 3
[pid   794] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[   42.318510][  T766] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
[   42.338093][  T766] ext4 filesystem being mounted at /root/syzkaller.iU8IiS/13/bus supports timestamps until (%ptR?) (0x7fffffff)
[pid   787] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   766] <... mount resumed>)        = 0
[pid   766] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   766] chdir("./bus")              = 0
[pid   766] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4
[pid   766] ioctl(4, LOOP_CLR_FD)       = 0
[pid   766] close(4)                    = 0
[pid   766] exit_group(0)               = ?
[pid   766] +++ exited with 0 +++
[pid   360] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=766, si_uid=0, si_status=0, si_utime=5, si_stime=24} ---
[pid   360] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   360] umount2("./13", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   360] openat(AT_FDCWD, "./13", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   360] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   360] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   360] umount2("./13/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   360] newfstatat(AT_FDCWD, "./13/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   360] unlink("./13/binderfs")     = 0
[pid   360] umount2("./13/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   360] umount2("./13/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   360] newfstatat(AT_FDCWD, "./13/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   360] umount2("./13/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   360] openat(AT_FDCWD, "./13/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   360] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   360] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   360] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   360] close(4)                    = 0
[pid   360] rmdir("./13/bus")           = 0
[pid   360] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   360] close(3)                    = 0
[pid   360] rmdir("./13")               = 0
[pid   360] mkdir("./14", 0777)         = 0
[pid   360] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3
[pid   360] ioctl(3, LOOP_CLR_FD)       = 0
[pid   360] close(3)                    = 0
[pid   360] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55556caf1650) = 795
./strace-static-x86_64: Process 795 attached
[pid   795] set_robust_list(0x55556caf1660, 24) = 0
[pid   795] chdir("./14")               = 0
[pid   795] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   795] setpgid(0, 0)               = 0
[pid   795] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   795] write(3, "1000", 4)         = 4
[pid   795] close(3)                    = 0
[pid   795] symlink("/dev/binderfs", "./binderfs") = 0
[pid   795] write(1, "executing program\n", 18executing program
) = 18
[pid   795] memfd_create("syzkaller", 0) = 3
[pid   795] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   788] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   786] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   794] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   787] <... write resumed>)        = 20699119
[pid   787] munmap(0x7fb94d783000, 138412032) = 0
[pid   787] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4
[pid   787] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid   787] close(3)                    = 0
[pid   787] close(4)                    = 0
[pid   787] mkdir("./bus", 0777)        = 0
[   42.670213][  T787] F2FS-fs (loop1): invalid crc value
[pid   787] mount("/dev/loop1", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   795] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   786] <... write resumed>)        = 20699119
[pid   786] munmap(0x7fb94d783000, 138412032) = 0
[pid   786] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4
[pid   786] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid   786] close(3)                    = 0
[pid   786] close(4)                    = 0
[pid   786] mkdir("./bus", 0777)        = 0
[pid   786] mount("/dev/loop3", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   788] <... write resumed>)        = 20699119
[pid   788] munmap(0x7fb94d783000, 138412032) = 0
[pid   788] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4
[   42.767989][  T786] F2FS-fs (loop3): invalid crc value
[pid   788] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid   788] close(3)                    = 0
[pid   788] close(4)                    = 0
[pid   788] mkdir("./bus", 0777)        = 0
[pid   788] mount("/dev/loop2", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   794] <... write resumed>)        = 20699119
[pid   794] munmap(0x7fb94d783000, 138412032) = 0
[pid   794] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid   794] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid   794] close(3)                    = 0
[pid   794] close(4)                    = 0
[pid   794] mkdir("./bus", 0777)        = 0
[   42.794705][  T787] F2FS-fs (loop1): recover fsync data on readonly fs
[   42.807383][  T787] F2FS-fs (loop1): Cannot turn on quotas: -2 on 0
[   42.819396][  T788] F2FS-fs (loop2): invalid crc value
[   42.836071][  T787] F2FS-fs (loop1): checkpoint=disable on readonly fs
[pid   794] mount("/dev/loop0", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   795] <... write resumed>)        = 20699119
[   42.872154][  T794] F2FS-fs (loop0): invalid crc value
[   42.883432][  T786] F2FS-fs (loop3): recover fsync data on readonly fs
[   42.911376][  T786] F2FS-fs (loop3): Cannot turn on quotas: -2 on 0
[pid   795] munmap(0x7fb94d783000, 138412032) = 0
[pid   795] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4
[pid   795] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid   795] close(3)                    = 0
[pid   795] close(4)                    = 0
[pid   795] mkdir("./bus", 0777)        = 0
[   42.930078][  T786] F2FS-fs (loop3): checkpoint=disable on readonly fs
[   42.939799][  T788] F2FS-fs (loop2): recover fsync data on readonly fs
[   42.945370][  T795] F2FS-fs (loop4): invalid crc value
[   42.946643][  T788] F2FS-fs (loop2): Cannot turn on quotas: -2 on 0
[   42.959499][  T788] F2FS-fs (loop2): checkpoint=disable on readonly fs
[   42.977972][  T794] F2FS-fs (loop0): recover fsync data on readonly fs
[   42.984686][  T794] F2FS-fs (loop0): Cannot turn on quotas: -2 on 0
[   43.009381][  T794] F2FS-fs (loop0): checkpoint=disable on readonly fs
[pid   795] mount("/dev/loop4", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   787] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   787] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3
[   43.028569][  T795] F2FS-fs (loop4): recover fsync data on readonly fs
[   43.035209][  T795] F2FS-fs (loop4): Cannot turn on quotas: -2 on 0
[   43.041737][  T795] F2FS-fs (loop4): checkpoint=disable on readonly fs
[pid   787] ioctl(3, LOOP_CLR_FD)       = 0
[pid   787] close(3 <unfinished ...>
[pid   786] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   787] <... close resumed>)        = 0
[pid   786] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   787] memfd_create("syzkaller", 0) = 3
[pid   787] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   786] <... openat resumed>)       = 3
[pid   786] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   787] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144) = 262144
[pid   787] munmap(0x7fb94d783000, 138412032) = 0
[pid   787] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   786] <... ioctl resumed>)        = 0
[pid   786] close(3 <unfinished ...>
[pid   788] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   788] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   787] <... openat resumed>)       = 4
[pid   787] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   794] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   794] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   788] <... openat resumed>)       = 3
[pid   788] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   786] <... close resumed>)        = 0
[pid   786] memfd_create("syzkaller", 0) = 3
[pid   786] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid   787] <... ioctl resumed>)        = 0
[pid   787] close(3)                    = 0
[pid   786] <... mmap resumed>)         = 0x7fb94d783000
[pid   787] close(4 <unfinished ...>
[pid   786] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144) = 262144
[pid   786] munmap(0x7fb94d783000, 138412032) = 0
[pid   786] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   795] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   794] <... openat resumed>)       = 3
[pid   795] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   794] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   787] <... close resumed>)        = 0
[pid   786] <... openat resumed>)       = 4
[pid   787] mkdir("./bus", 0777 <unfinished ...>
[pid   786] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   787] <... mkdir resumed>)        = -1 EEXIST (File exists)
[pid   787] mount("/dev/loop1", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   795] <... openat resumed>)       = 3
[pid   795] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   786] <... ioctl resumed>)        = 0
[pid   786] close(3)                    = 0
[pid   786] close(4 <unfinished ...>
[pid   788] <... ioctl resumed>)        = 0
[pid   788] close(3 <unfinished ...>
[pid   787] <... mount resumed>)        = 0
[pid   787] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   787] chdir("./bus")              = 0
[pid   787] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   794] <... ioctl resumed>)        = 0
[pid   794] close(3 <unfinished ...>
[pid   786] <... close resumed>)        = 0
[pid   788] <... close resumed>)        = 0
[pid   786] mkdir("./bus", 0777 <unfinished ...>
[pid   788] memfd_create("syzkaller", 0 <unfinished ...>
[pid   786] <... mkdir resumed>)        = -1 EEXIST (File exists)
[pid   788] <... memfd_create resumed>) = 3
[pid   786] mount("/dev/loop3", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   788] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   788] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 <unfinished ...>
[pid   787] <... openat resumed>)       = 4
[pid   787] ioctl(4, LOOP_CLR_FD)       = 0
[pid   787] close(4)                    = 0
[pid   787] exit_group(0)               = ?
[pid   787] +++ exited with 0 +++
[pid   357] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=787, si_uid=0, si_status=0, si_utime=3, si_stime=23} ---
[pid   357] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid   788] <... write resumed>)        = 262144
[pid   788] munmap(0x7fb94d783000, 138412032) = 0
[pid   788] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4
[pid   794] <... close resumed>)        = 0
[pid   788] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   794] memfd_create("syzkaller", 0 <unfinished ...>
[pid   357] <... restart_syscall resumed>) = 0
[pid   357] umount2("./13", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] openat(AT_FDCWD, "./13", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[   43.462946][  T787] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue
[   43.471877][  T787] ext4 filesystem being mounted at /root/syzkaller.c2lmo2/13/bus supports timestamps until (%ptR?) (0x7fffffff)
[pid   357] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   357] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   357] umount2("./13/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] newfstatat(AT_FDCWD, "./13/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   357] unlink("./13/binderfs")     = 0
[pid   357] umount2("./13/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   788] <... ioctl resumed>)        = 0
[pid   788] close(3)                    = 0
[pid   794] <... memfd_create resumed>) = 3
[pid   788] close(4 <unfinished ...>
[pid   794] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid   788] <... close resumed>)        = 0
[pid   794] <... mmap resumed>)         = 0x7fb94d783000
[pid   788] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[pid   788] mount("/dev/loop2", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   794] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144) = 262144
[pid   794] munmap(0x7fb94d783000, 138412032) = 0
[pid   794] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   795] <... ioctl resumed>)        = 0
[   43.515891][  T786] EXT4-fs warning (device loop3): ext4_enable_quotas:6100: Failed to enable quota tracking (type=0, err=-13, ino=3). Please run e2fsck to fix.
[   43.531628][  T786] EXT4-fs (loop3): mount failed
[pid   795] close(3 <unfinished ...>
[pid   788] <... mount resumed>)        = 0
[pid   788] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   788] chdir("./bus")              = 0
[   43.599059][  T788] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue
[   43.608159][  T788] ext4 filesystem being mounted at /root/syzkaller.aDc6zi/14/bus supports timestamps until (%ptR?) (0x7fffffff)
[pid   788] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   794] <... openat resumed>)       = 4
[pid   795] <... close resumed>)        = 0
[pid   794] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   786] <... mount resumed>)        = -1 EACCES (Permission denied)
[pid   357] <... umount2 resumed>)      = 0
[pid   786] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   357] umount2("./13/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] newfstatat(AT_FDCWD, "./13/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   357] umount2("./13/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] openat(AT_FDCWD, "./13/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid   795] memfd_create("syzkaller", 0 <unfinished ...>
[pid   357] <... openat resumed>)       = 4
[pid   795] <... memfd_create resumed>) = 3
[pid   794] <... ioctl resumed>)        = 0
[pid   786] <... openat resumed>)       = 3
[pid   357] newfstatat(4, "",  <unfinished ...>
[pid   794] close(3 <unfinished ...>
[pid   786] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   357] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   795] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid   794] <... close resumed>)        = 0
[pid   357] getdents64(4,  <unfinished ...>
[pid   795] <... mmap resumed>)         = 0x7fb94d783000
[pid   794] close(4 <unfinished ...>
[pid   357] <... getdents64 resumed>0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   357] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   357] close(4)                    = 0
[pid   357] rmdir("./13/bus")           = 0
[pid   357] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   357] close(3)                    = 0
[pid   795] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 <unfinished ...>
[pid   788] <... openat resumed>)       = 4
[pid   357] rmdir("./13")               = 0
[pid   357] mkdir("./14", 0777 <unfinished ...>
[pid   788] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid   357] <... mkdir resumed>)        = 0
[pid   357] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   795] <... write resumed>)        = 262144
[pid   795] munmap(0x7fb94d783000, 138412032) = 0
[pid   795] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   786] <... ioctl resumed>)        = 0
[pid   786] close(3 <unfinished ...>
[pid   794] <... close resumed>)        = 0
[pid   795] <... openat resumed>)       = 4
[pid   794] mkdir("./bus", 0777 <unfinished ...>
[pid   788] <... ioctl resumed>)        = 0
[pid   786] <... close resumed>)        = 0
[pid   357] <... openat resumed>)       = 3
[pid   795] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   794] <... mkdir resumed>)        = -1 EEXIST (File exists)
[pid   788] close(4 <unfinished ...>
[pid   794] mount("/dev/loop0", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   788] <... close resumed>)        = 0
[pid   786] exit_group(0 <unfinished ...>
[pid   357] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   795] <... ioctl resumed>)        = 0
[pid   788] exit_group(0)               = ?
[pid   788] +++ exited with 0 +++
[pid   795] close(3 <unfinished ...>
[pid   786] <... exit_group resumed>)   = ?
[pid   358] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=788, si_uid=0, si_status=0, si_utime=10, si_stime=23} ---
[pid   357] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid   795] <... close resumed>)        = 0
[pid   786] +++ exited with 0 +++
[pid   795] close(4 <unfinished ...>
[pid   357] close(3 <unfinished ...>
[pid   795] <... close resumed>)        = 0
[pid   359] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=786, si_uid=0, si_status=0, si_utime=5, si_stime=26} ---
[pid   357] <... close resumed>)        = 0
[pid   795] mkdir("./bus", 0777 <unfinished ...>
[pid   359] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid   357] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid   795] <... mkdir resumed>)        = -1 EEXIST (File exists)
[pid   359] <... restart_syscall resumed>) = 0
[pid   795] mount("/dev/loop4", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   357] <... clone resumed>, child_tidptr=0x55556caf1650) = 821
[pid   359] umount2("./13", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   359] openat(AT_FDCWD, "./13", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   359] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   359] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   359] umount2("./13/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   359] newfstatat(AT_FDCWD, "./13/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   359] unlink("./13/binderfs")     = 0
[pid   359] umount2("./13/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   359] newfstatat(AT_FDCWD, "./13/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   359] umount2("./13/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   358] umount2("./14", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   359] openat(AT_FDCWD, "./13/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid   358] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   359] <... openat resumed>)       = 4
[pid   358] openat(AT_FDCWD, "./14", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid   359] newfstatat(4, "",  <unfinished ...>
[pid   358] <... openat resumed>)       = 3
[pid   359] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   358] newfstatat(3, "",  <unfinished ...>
[pid   359] getdents64(4,  <unfinished ...>
[pid   358] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   359] <... getdents64 resumed>0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   358] getdents64(3,  <unfinished ...>
[pid   359] getdents64(4,  <unfinished ...>
[pid   358] <... getdents64 resumed>0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   359] <... getdents64 resumed>0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   358] umount2("./14/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   359] close(4 <unfinished ...>
[pid   358] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   359] <... close resumed>)        = 0
[pid   358] newfstatat(AT_FDCWD, "./14/binderfs",  <unfinished ...>
[pid   359] rmdir("./13/bus" <unfinished ...>
[pid   358] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   359] <... rmdir resumed>)        = 0
[pid   358] unlink("./14/binderfs" <unfinished ...>
[pid   359] getdents64(3,  <unfinished ...>
[pid   358] <... unlink resumed>)       = 0
[pid   359] <... getdents64 resumed>0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   358] umount2("./14/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   359] close(3)                    = 0
[pid   359] rmdir("./13")               = 0
[pid   359] mkdir("./14", 0777)         = 0
[pid   359] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3
[pid   359] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   359] close(3executing program
)                    = 0
[pid   358] <... umount2 resumed>)      = 0
[pid   359] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55556caf1650) = 824
./strace-static-x86_64: Process 821 attached
[pid   821] set_robust_list(0x55556caf1660, 24) = 0
[pid   821] chdir("./14")               = 0
[pid   821] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   821] setpgid(0, 0)               = 0
[pid   821] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   821] write(3, "1000", 4)         = 4
[pid   821] close(3)                    = 0
[pid   821] symlink("/dev/binderfs", "./binderfs") = 0
[pid   821] write(1, "executing program\n", 18) = 18
[pid   821] memfd_create("syzkaller", 0 <unfinished ...>
[pid   358] umount2("./14/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   821] <... memfd_create resumed>) = 3
[pid   821] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid   358] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   821] <... mmap resumed>)         = 0x7fb94d783000
[   43.767498][  T794] EXT4-fs warning (device loop0): ext4_enable_quotas:6100: Failed to enable quota tracking (type=0, err=-13, ino=3). Please run e2fsck to fix.
[   43.793907][  T794] EXT4-fs (loop0): mount failed
[pid   358] newfstatat(AT_FDCWD, "./14/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   358] umount2("./14/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   358] openat(AT_FDCWD, "./14/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   358] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   358] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   358] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   358] close(4)                    = 0
[pid   358] rmdir("./14/bus")           = 0
[pid   358] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   358] close(3)                    = 0
[pid   358] rmdir("./14")               = 0
[pid   358] mkdir("./15", 0777)         = 0
[pid   358] openat(AT_FDCWD, "/dev/loop2", O_RDWR./strace-static-x86_64: Process 824 attached
 <unfinished ...>
[pid   824] set_robust_list(0x55556caf1660, 24) = 0
[pid   824] chdir("./14")               = 0
[pid   824] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   795] <... mount resumed>)        = 0
[pid   824] setpgid(0, 0)               = 0
[pid   795] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid   824] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   795] <... openat resumed>)       = 3
[pid   824] write(3, "1000", 4 <unfinished ...>
[pid   795] chdir("./bus" <unfinished ...>
[pid   824] <... write resumed>)        = 4
[pid   824] close(3 <unfinished ...>
[pid   795] <... chdir resumed>)        = 0
[pid   824] <... close resumed>)        = 0
[pid   795] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   824] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   824] write(1, "executing program\n", 18) = 18
[pid   824] memfd_create("syzkaller", 0) = 3
[pid   824] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[   43.812834][  T795] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
[   43.834689][  T795] ext4 filesystem being mounted at /root/syzkaller.iU8IiS/14/bus supports timestamps until (%ptR?) (0x7fffffff)
[pid   794] <... mount resumed>)        = -1 EACCES (Permission denied)
[pid   795] <... openat resumed>)       = 4
[pid   794] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   358] <... openat resumed>)       = 3
[pid   795] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid   794] <... openat resumed>)       = 3
[pid   795] <... ioctl resumed>)        = 0
[pid   358] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   795] close(4 <unfinished ...>
[pid   794] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   358] close(3 <unfinished ...>
[pid   795] <... close resumed>)        = 0
[pid   795] exit_group(0 <unfinished ...>
[pid   358] <... close resumed>)        = 0
[pid   795] <... exit_group resumed>)   = ?
[pid   358] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid   821] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   795] +++ exited with 0 +++
[pid   358] <... clone resumed>, child_tidptr=0x55556caf1650) = 825
[pid   360] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=795, si_uid=0, si_status=0, si_utime=4, si_stime=27} ---
[pid   360] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   360] umount2("./14", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   360] openat(AT_FDCWD, "./14", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   360] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   360] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   360] umount2("./14/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   360] newfstatat(AT_FDCWD, "./14/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   360] unlink("./14/binderfs")     = 0
[pid   360] umount2("./14/bus", MNT_FORCE|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 825 attached
 <unfinished ...>
[pid   825] set_robust_list(0x55556caf1660, 24) = 0
[pid   825] chdir("./15")               = 0
[pid   825] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   825] setpgid(0, 0)               = 0
[pid   825] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   825] write(3, "1000", 4)         = 4
[pid   825] close(3)                    = 0
[pid   825] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   825] write(1, "executing program\n", 18) = 18
[pid   825] memfd_create("syzkaller", 0) = 3
[pid   825] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   824] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   794] <... ioctl resumed>)        = 0
[pid   794] close(3 <unfinished ...>
[pid   360] <... umount2 resumed>)      = 0
[pid   794] <... close resumed>)        = 0
[pid   794] exit_group(0)               = ?
[pid   360] umount2("./14/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   794] +++ exited with 0 +++
[pid   356] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=794, si_uid=0, si_status=0, si_utime=6, si_stime=24} ---
[pid   356] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid   360] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   360] newfstatat(AT_FDCWD, "./14/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   356] <... restart_syscall resumed>) = 0
[pid   356] umount2("./14", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   356] openat(AT_FDCWD, "./14", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   356] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   356] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   356] umount2("./14/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   356] newfstatat(AT_FDCWD, "./14/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   356] unlink("./14/binderfs")     = 0
[pid   356] umount2("./14/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   356] newfstatat(AT_FDCWD, "./14/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   356] umount2("./14/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   356] openat(AT_FDCWD, "./14/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   356] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   356] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   356] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   356] close(4)                    = 0
[pid   356] rmdir("./14/bus" <unfinished ...>
[pid   360] umount2("./14/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   356] <... rmdir resumed>)        = 0
[pid   356] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   356] close(3)                    = 0
[pid   356] rmdir("./14")               = 0
[pid   360] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   356] mkdir("./15", 0777)         = 0
[pid   356] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   356] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   356] close(3)                    = 0
[pid   356] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55556caf1650) = 827
[pid   360] openat(AT_FDCWD, "./14/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   360] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   360] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   360] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   360] close(4)                    = 0
[pid   360] rmdir("./14/bus")           = 0
[pid   360] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   360] close(3)                    = 0
./strace-static-x86_64: Process 827 attached
[pid   827] set_robust_list(0x55556caf1660, 24) = 0
[pid   827] chdir("./15" <unfinished ...>
[pid   360] rmdir("./14" <unfinished ...>
[pid   827] <... chdir resumed>)        = 0
[pid   827] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   827] setpgid(0, 0)               = 0
[pid   827] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   360] <... rmdir resumed>)        = 0
[pid   827] write(3, "1000", 4)         = 4
[pid   827] close(3)                    = 0
[pid   827] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   827] write(1, "executing program\n", 18) = 18
[pid   360] mkdir("./15", 0777 <unfinished ...>
[pid   827] memfd_create("syzkaller", 0) = 3
[pid   827] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   360] <... mkdir resumed>)        = 0
[pid   360] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3
[pid   360] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   360] close(3)                    = 0
[pid   360] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55556caf1650) = 828
./strace-static-x86_64: Process 828 attached
[pid   828] set_robust_list(0x55556caf1660, 24) = 0
[pid   828] chdir("./15")               = 0
[pid   828] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   828] setpgid(0, 0)               = 0
[pid   828] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   828] write(3, "1000", 4)         = 4
[pid   828] close(3)                    = 0
[pid   828] symlink("/dev/binderfs", "./binderfs") = 0
[pid   828] write(1, "executing program\n", 18executing program
) = 18
[pid   828] memfd_create("syzkaller", 0) = 3
[pid   828] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   821] <... write resumed>)        = 20699119
[pid   821] munmap(0x7fb94d783000, 138412032) = 0
[pid   821] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4
[pid   821] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid   821] close(3)                    = 0
[pid   821] close(4 <unfinished ...>
[pid   824] <... write resumed>)        = 20699119
[pid   824] munmap(0x7fb94d783000, 138412032) = 0
[pid   825] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   824] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4
[pid   821] <... close resumed>)        = 0
[pid   821] mkdir("./bus", 0777 <unfinished ...>
[pid   824] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   821] <... mkdir resumed>)        = 0
[pid   821] mount("/dev/loop1", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   828] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   824] <... ioctl resumed>)        = 0
[pid   824] close(3)                    = 0
[pid   824] close(4 <unfinished ...>
[pid   827] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 <unfinished ...>
[pid   824] <... close resumed>)        = 0
[pid   824] mkdir("./bus", 0777)        = 0
[   44.229452][  T821] F2FS-fs (loop1): invalid crc value
[   44.251117][  T824] F2FS-fs (loop3): invalid crc value
[pid   824] mount("/dev/loop3", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   825] <... write resumed>)        = 20699119
[pid   825] munmap(0x7fb94d783000, 138412032) = 0
[pid   825] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4
[pid   825] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid   825] close(3)                    = 0
[   44.342970][  T824] F2FS-fs (loop3): recover fsync data on readonly fs
[   44.359270][  T821] F2FS-fs (loop1): recover fsync data on readonly fs
[   44.376352][  T824] F2FS-fs (loop3): Cannot turn on quotas: -2 on 0
[   44.381255][  T821] F2FS-fs (loop1): Cannot turn on quotas: -2 on 0
[pid   825] close(4 <unfinished ...>
[pid   827] <... write resumed>)        = 20699119
[pid   827] munmap(0x7fb94d783000, 138412032) = 0
[pid   827] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   828] <... write resumed>)        = 20699119
[pid   827] <... openat resumed>)       = 4
[pid   825] <... close resumed>)        = 0
[pid   827] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   825] mkdir("./bus", 0777 <unfinished ...>
[pid   828] munmap(0x7fb94d783000, 138412032 <unfinished ...>
[pid   825] <... mkdir resumed>)        = 0
[pid   825] mount("/dev/loop2", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   828] <... munmap resumed>)       = 0
[pid   828] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   827] <... ioctl resumed>)        = 0
[pid   827] close(3)                    = 0
[pid   827] close(4 <unfinished ...>
[pid   828] <... openat resumed>)       = 4
[   44.383345][  T824] F2FS-fs (loop3): checkpoint=disable on readonly fs
[   44.393384][  T821] F2FS-fs (loop1): checkpoint=disable on readonly fs
[pid   828] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   827] <... close resumed>)        = 0
[pid   827] mkdir("./bus", 0777)        = 0
[pid   827] mount("/dev/loop0", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   828] <... ioctl resumed>)        = 0
[pid   828] close(3)                    = 0
[pid   828] close(4)                    = 0
[pid   828] mkdir("./bus", 0777)        = 0
[   44.492820][  T825] F2FS-fs (loop2): invalid crc value
[   44.520226][  T825] F2FS-fs (loop2): recover fsync data on readonly fs
[   44.530156][  T825] F2FS-fs (loop2): Cannot turn on quotas: -2 on 0
[   44.535381][  T827] F2FS-fs (loop0): invalid crc value
[pid   828] mount("/dev/loop4", "./bus", "f2fs", MS_RDONLY|MS_NOATIME|MS_REC|MS_SILENT|0x200, "nodiscard,usrjquota=nodiscard,acl,alloc_mode=reuse,atgc,disable_roll_forward,background_gc=on,nouser"... <unfinished ...>
[pid   821] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[   44.542176][  T825] F2FS-fs (loop2): checkpoint=disable on readonly fs
[   44.580122][  T827] F2FS-fs (loop0): recover fsync data on readonly fs
[   44.586810][  T827] F2FS-fs (loop0): Cannot turn on quotas: -2 on 0
[pid   821] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   824] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   824] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3
[pid   824] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   821] <... openat resumed>)       = 3
[   44.593721][  T827] F2FS-fs (loop0): checkpoint=disable on readonly fs
[   44.618983][  T828] F2FS-fs (loop4): invalid crc value
[pid   821] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   825] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   825] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   824] <... ioctl resumed>)        = 0
[   44.664074][  T828] F2FS-fs (loop4): recover fsync data on readonly fs
[   44.670895][  T828] F2FS-fs (loop4): Cannot turn on quotas: -2 on 0
[   44.686667][  T828] F2FS-fs (loop4): checkpoint=disable on readonly fs
[pid   824] close(3 <unfinished ...>
[pid   827] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   825] <... openat resumed>)       = 3
[pid   824] <... close resumed>)        = 0
[pid   827] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   825] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   824] memfd_create("syzkaller", 0 <unfinished ...>
[pid   821] <... ioctl resumed>)        = 0
[pid   824] <... memfd_create resumed>) = 3
[pid   824] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   824] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 <unfinished ...>
[pid   821] close(3 <unfinished ...>
[pid   824] <... write resumed>)        = 262144
[pid   824] munmap(0x7fb94d783000, 138412032) = 0
[pid   824] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   825] <... ioctl resumed>)        = 0
[pid   825] close(3 <unfinished ...>
[pid   827] <... openat resumed>)       = 3
[pid   824] <... openat resumed>)       = 4
[pid   821] <... close resumed>)        = 0
[pid   821] memfd_create("syzkaller", 0) = 3
[pid   821] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   821] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 <unfinished ...>
[pid   828] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid   827] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   825] <... close resumed>)        = 0
[pid   824] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   821] <... write resumed>)        = 262144
[pid   821] munmap(0x7fb94d783000, 138412032) = 0
[pid   821] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   828] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   825] memfd_create("syzkaller", 0) = 3
[pid   825] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000
[pid   825] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144) = 262144
[pid   825] munmap(0x7fb94d783000, 138412032) = 0
[pid   825] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   824] <... ioctl resumed>)        = 0
[pid   824] close(3)                    = 0
[pid   824] close(4 <unfinished ...>
[pid   827] <... ioctl resumed>)        = 0
[pid   827] close(3 <unfinished ...>
[pid   824] <... close resumed>)        = 0
[pid   828] <... openat resumed>)       = 3
[pid   821] <... openat resumed>)       = 4
[pid   828] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   824] mkdir("./bus", 0777 <unfinished ...>
[pid   821] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   824] <... mkdir resumed>)        = -1 EEXIST (File exists)
[pid   824] mount("/dev/loop3", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   825] <... openat resumed>)       = 4
[pid   825] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid   825] close(3)                    = 0
[pid   825] close(4)                    = 0
[pid   825] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[pid   825] mount("/dev/loop2", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   827] <... close resumed>)        = 0
[pid   821] <... ioctl resumed>)        = 0
[pid   827] memfd_create("syzkaller", 0) = 3
[pid   827] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid   821] close(3 <unfinished ...>
[pid   827] <... mmap resumed>)         = 0x7fb94d783000
[pid   821] <... close resumed>)        = 0
[pid   821] close(4)                    = 0
[pid   827] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 <unfinished ...>
[pid   821] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[pid   827] <... write resumed>)        = 262144
[pid   821] mount("/dev/loop1", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   827] munmap(0x7fb94d783000, 138412032) = 0
[pid   827] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid   827] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid   827] close(3)                    = 0
[pid   827] close(4)                    = 0
[pid   827] mkdir("./bus", 0777)        = -1 EEXIST (File exists)
[   44.990394][  T824] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[   45.008389][  T821] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue
[   45.013024][  T824] ext4 filesystem being mounted at /root/syzkaller.P1RtK2/14/bus supports timestamps until (%ptR?) (0x7fffffff)
[   45.027032][  T821] ext4 filesystem being mounted at /root/syzkaller.c2lmo2/14/bus supports timestamps until (%ptR?) (0x7fffffff)
[pid   827] mount("/dev/loop0", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC|MS_SYNCHRONOUS|MS_NODIRATIME|MS_POSIXACL|MS_RELATIME, ",errors=continue" <unfinished ...>
[pid   821] <... mount resumed>)        = 0
[pid   821] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   821] chdir("./bus")              = 0
[pid   821] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4
[pid   821] ioctl(4, LOOP_CLR_FD)       = 0
[pid   821] close(4 <unfinished ...>
[pid   825] <... mount resumed>)        = 0
[pid   821] <... close resumed>)        = 0
[pid   821] exit_group(0)               = ?
[pid   821] +++ exited with 0 +++
[pid   357] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=821, si_uid=0, si_status=0, si_utime=8, si_stime=23} ---
[pid   357] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid   824] <... mount resumed>)        = 0
[pid   824] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid   824] chdir("./bus")              = 0
[pid   824] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4
[pid   824] ioctl(4, LOOP_CLR_FD)       = 0
[pid   824] close(4 <unfinished ...>
[pid   357] <... restart_syscall resumed>) = 0
[pid   357] umount2("./14", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] openat(AT_FDCWD, "./14", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   357] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   357] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   357] umount2("./14/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] newfstatat(AT_FDCWD, "./14/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   357] unlink("./14/binderfs")     = 0
[pid   357] umount2("./14/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   825] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid   824] <... close resumed>)        = 0
[pid   824] exit_group(0)               = ?
[pid   824] +++ exited with 0 +++
[pid   359] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=824, si_uid=0, si_status=0, si_utime=8, si_stime=26} ---
[pid   825] <... openat resumed>)       = 3
[pid   825] chdir("./bus" <unfinished ...>
[pid   827] <... mount resumed>)        = 0
[pid   825] <... chdir resumed>)        = 0
[pid   825] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   359] umount2("./14", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   827] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid   825] <... openat resumed>)       = 4
[pid   359] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   825] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid   359] openat(AT_FDCWD, "./14", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid   827] <... openat resumed>)       = 3
[pid   825] <... ioctl resumed>)        = 0
[pid   825] close(4 <unfinished ...>
[pid   827] chdir("./bus" <unfinished ...>
[pid   359] <... openat resumed>)       = 3
[pid   825] <... close resumed>)        = 0
[pid   359] newfstatat(3, "",  <unfinished ...>
[pid   827] <... chdir resumed>)        = 0
[pid   825] exit_group(0 <unfinished ...>
[pid   359] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   825] <... exit_group resumed>)   = ?
[pid   359] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   825] +++ exited with 0 +++
[pid   359] umount2("./14/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   358] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=825, si_uid=0, si_status=0, si_utime=5, si_stime=25} ---
[pid   359] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   358] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid   359] newfstatat(AT_FDCWD, "./14/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   359] unlink("./14/binderfs")     = 0
[pid   359] umount2("./14/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   358] <... restart_syscall resumed>) = 0
[pid   358] umount2("./15", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   358] openat(AT_FDCWD, "./15", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   358] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   358] getdents64(3, 0x55556caf26f0 /* 4 entries */, 32768) = 104
[pid   358] umount2("./15/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   358] newfstatat(AT_FDCWD, "./15/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   358] unlink("./15/binderfs")     = 0
[pid   358] umount2("./15/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   827] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   828] <... ioctl resumed>)        = 0
[   45.030318][  T825] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue
[   45.053128][  T825] ext4 filesystem being mounted at /root/syzkaller.aDc6zi/15/bus supports timestamps until (%ptR?) (0x7fffffff)
[   45.066725][  T827] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[   45.076154][  T827] ext4 filesystem being mounted at /root/syzkaller.RLArfL/15/bus supports timestamps until (%ptR?) (0x7fffffff)
[pid   828] close(3 <unfinished ...>
[pid   357] <... umount2 resumed>)      = 0
[pid   357] umount2("./14/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] newfstatat(AT_FDCWD, "./14/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   357] umount2("./14/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   357] openat(AT_FDCWD, "./14/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   357] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   357] getdents64(4, 0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   357] getdents64(4, 0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   357] close(4)                    = 0
[pid   357] rmdir("./14/bus")           = 0
[pid   357] getdents64(3, 0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   357] close(3)                    = 0
[pid   357] rmdir("./14")               = 0
[pid   357] mkdir("./15", 0777)         = 0
[pid   357] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   358] <... umount2 resumed>)      = 0
[pid   827] <... openat resumed>)       = 4
[pid   358] umount2("./15/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   828] <... close resumed>)        = 0
[pid   358] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   358] newfstatat(AT_FDCWD, "./15/bus",  <unfinished ...>
[pid   828] memfd_create("syzkaller", 0 <unfinished ...>
[pid   358] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   828] <... memfd_create resumed>) = 3
[pid   358] umount2("./15/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   828] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid   358] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   828] <... mmap resumed>)         = 0x7fb94d783000
[pid   358] openat(AT_FDCWD, "./15/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid   828] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 <unfinished ...>
[pid   358] <... openat resumed>)       = 4
[pid   358] newfstatat(4, "",  <unfinished ...>
[pid   359] <... umount2 resumed>)      = 0
[pid   358] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   359] umount2("./14/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   827] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid   358] getdents64(4,  <unfinished ...>
[pid   357] <... openat resumed>)       = 3
[pid   359] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   358] <... getdents64 resumed>0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   359] newfstatat(AT_FDCWD, "./14/bus",  <unfinished ...>
[pid   827] <... ioctl resumed>)        = 0
[pid   358] getdents64(4,  <unfinished ...>
[pid   357] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   827] close(4 <unfinished ...>
[pid   359] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   358] <... getdents64 resumed>0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   359] umount2("./14/bus", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   358] close(4 <unfinished ...>
[pid   359] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   357] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid   827] <... close resumed>)        = 0
[pid   359] openat(AT_FDCWD, "./14/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid   358] <... close resumed>)        = 0
[pid   357] close(3 <unfinished ...>
[pid   359] <... openat resumed>)       = 4
[pid   358] rmdir("./15/bus" <unfinished ...>
[pid   359] newfstatat(4, "",  <unfinished ...>
[pid   357] <... close resumed>)        = 0
[pid   828] <... write resumed>)        = 262144
[pid   828] munmap(0x7fb94d783000, 138412032 <unfinished ...>
[pid   358] <... rmdir resumed>)        = 0
[pid   359] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   358] getdents64(3,  <unfinished ...>
[pid   357] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid   359] getdents64(4,  <unfinished ...>
[pid   358] <... getdents64 resumed>0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   358] close(3 <unfinished ...>
[pid   359] <... getdents64 resumed>0x55556cafa730 /* 2 entries */, 32768) = 48
[pid   358] <... close resumed>)        = 0
[pid   358] rmdir("./15" <unfinished ...>
[pid   359] getdents64(4,  <unfinished ...>
[pid   828] <... munmap resumed>)       = 0
[pid   828] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4
[pid   358] <... rmdir resumed>)        = 0
[pid   359] <... getdents64 resumed>0x55556cafa730 /* 0 entries */, 32768) = 0
[pid   828] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   827] exit_group(0 <unfinished ...>
[pid   359] close(4 <unfinished ...>
[pid   358] mkdir("./16", 0777 <unfinished ...>
[pid   827] <... exit_group resumed>)   = ?
[pid   359] <... close resumed>)        = 0
[pid   359] rmdir("./14/bus" <unfinished ...>
[pid   358] <... mkdir resumed>)        = 0
[pid   357] <... clone resumed>, child_tidptr=0x55556caf1650) = 853
[pid   828] <... ioctl resumed>)        = 0
[pid   359] <... rmdir resumed>)        = 0
[pid   359] getdents64(3,  <unfinished ...>
[pid   358] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   359] <... getdents64 resumed>0x55556caf26f0 /* 0 entries */, 32768) = 0
[pid   359] close(3)                    = 0
[pid   359] rmdir("./14" <unfinished ...>
[pid   828] close(3 <unfinished ...>
[pid   359] <... rmdir resumed>)        = 0
[pid   359] mkdir("./15", 0777 <unfinished ...>
[pid   828] <... close resumed>)        = 0
[pid   359] <... mkdir resumed>)        = 0
[pid   828] close(4 <unfinished ...>
[pid   359] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   827] +++ exited with 0 +++
[pid   356] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=827, si_uid=0, si_status=0, si_utime=7, si_stime=21} ---
[pid   356] restart_syscall(<... resuming interrupted clone ...>./strace-static-x86_64: Process 853 attached
 <unfinished ...>
[pid   853] set_robust_list(0x55556caf1660, 24) = 0
[pid   853] chdir("./15")               = 0
[pid   853] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   853] setpgid(0, 0)               = 0
[pid   853] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   853] write(3, "1000", 4)         = 4
[pid   853] close(3)                    = 0
[pid   853] symlink("/dev/binderfs", "./binderfs"executing program
) = 0
[pid   853] write(1, "executing program\n", 18) = 18
[pid   853] memfd_create("syzkaller", 0) = 3
[pid   853] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb94d783000